From c7e70107a815833b07b18d2a241a835896a39ab2 Mon Sep 17 00:00:00 2001
From: ashishdevtron <141303172+ashishdevtron@users.noreply.github.com>
Date: Thu, 18 Jan 2024 18:02:12 +0530
Subject: [PATCH 1/4] fix: Image-Scanner status for failed request (#4513)

* retry envs added

* json naming

* migration for image scan plugin and retry env fix

* fix

* image scan migration script updated - added new input variables

* migration updated

* migration updated

* name changed

* refactor

* added default value and change script no
---
 pkg/pipeline/CiService.go                     |  3 +++
 pkg/pipeline/types/CiCdConfig.go              |  2 ++
 pkg/pipeline/types/Workflow.go                |  2 ++
 .../sql/211_image_scan_plugin_update.down.sql |  0
 .../sql/211_image_scan_plugin_update.up.sql   | 27 +++++++++++++++++++
 5 files changed, 34 insertions(+)
 create mode 100644 scripts/sql/211_image_scan_plugin_update.down.sql
 create mode 100644 scripts/sql/211_image_scan_plugin_update.up.sql

diff --git a/pkg/pipeline/CiService.go b/pkg/pipeline/CiService.go
index 32dbb92da51..4512ef81e3b 100644
--- a/pkg/pipeline/CiService.go
+++ b/pkg/pipeline/CiService.go
@@ -245,6 +245,7 @@ func (impl *CiServiceImpl) TriggerCiPipeline(trigger types.Trigger) (int, error)
 	} else {
 		workflowRequest.Type = bean2.CI_WORKFLOW_PIPELINE_TYPE
 	}
+
 	err = impl.executeCiPipeline(workflowRequest)
 	if err != nil {
 		impl.Logger.Errorw("workflow error", "err", err)
@@ -659,6 +660,8 @@ func (impl *CiServiceImpl) buildWfRequestForCiPipeline(pipeline *pipelineConfig.
 		RegistryDestinationImageMap: registryDestinationImageMap,
 		RegistryCredentialMap:       registryCredentialMap,
 		PluginArtifactStage:         pluginArtifactStage,
+		ImageScanMaxRetries:         impl.config.ImageScanMaxRetries,
+		ImageScanRetryDelay:         impl.config.ImageScanRetryDelay,
 	}
 
 	if dockerRegistry != nil {
diff --git a/pkg/pipeline/types/CiCdConfig.go b/pkg/pipeline/types/CiCdConfig.go
index b5446c85b2c..b5a6ae11e15 100644
--- a/pkg/pipeline/types/CiCdConfig.go
+++ b/pkg/pipeline/types/CiCdConfig.go
@@ -65,6 +65,8 @@ type CiCdConfig struct {
 	SkipCreatingEcrRepo              bool                                `env:"SKIP_CREATING_ECR_REPO" envDefault:"false"`
 	MaxCiWorkflowRetries             int                                 `env:"MAX_CI_WORKFLOW_RETRIES" envDefault:"0"`
 	NatsServerHost                   string                              `env:"NATS_SERVER_HOST" envDefault:"nats://devtron-nats.devtroncd:4222"`
+	ImageScanMaxRetries              int                                 `env:"IMAGE_SCAN_MAX_RETRIES" envDefault:"3"`
+	ImageScanRetryDelay              int                                 `env:"IMAGE_SCAN_RETRY_DELAY" envDefault:"5"`
 	// from CdConfig
 	CdLimitCpu                       string                              `env:"CD_LIMIT_CI_CPU" envDefault:"0.5"`
 	CdLimitMem                       string                              `env:"CD_LIMIT_CI_MEM" envDefault:"3G"`
diff --git a/pkg/pipeline/types/Workflow.go b/pkg/pipeline/types/Workflow.go
index 327c484a26c..9a749bd9fb6 100644
--- a/pkg/pipeline/types/Workflow.go
+++ b/pkg/pipeline/types/Workflow.go
@@ -126,6 +126,8 @@ type WorkflowRequest struct {
 	RegistryCredentialMap       map[string]plugin.RegistryCredentials `json:"registryCredentialMap"`
 	PluginArtifactStage         string                                `json:"pluginArtifactStage"`
 	PushImageBeforePostCI       bool                                  `json:"pushImageBeforePostCI"`
+	ImageScanMaxRetries         int                                   `json:"imageScanMaxRetries,omitempty"`
+	ImageScanRetryDelay         int                                   `json:"imageScanRetryDelay,omitempty"`
 	Type                        bean.WorkflowPipelineType
 	Pipeline                    *pipelineConfig.Pipeline
 	Env                         *repository.Environment
diff --git a/scripts/sql/211_image_scan_plugin_update.down.sql b/scripts/sql/211_image_scan_plugin_update.down.sql
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/scripts/sql/211_image_scan_plugin_update.up.sql b/scripts/sql/211_image_scan_plugin_update.up.sql
new file mode 100644
index 00000000000..e04261f8d06
--- /dev/null
+++ b/scripts/sql/211_image_scan_plugin_update.up.sql
@@ -0,0 +1,27 @@
+INSERT INTO "plugin_step_variable" ("id", "plugin_step_id", "name", "format", "description", "is_exposed", "allow_empty_value", "default_value","variable_type", "value_type", "variable_step_index",reference_variable_name, "deleted", "created_on", "created_by", "updated_on", "updated_by") VALUES
+        (nextval('id_seq_plugin_step_variable'), (SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='Vulnerability Scanning' and ps."index"=1 and ps.deleted=false), 'IMAGE_SCAN_MAX_RETRIES','STRING','image scan max retry count',true,true,'3','INPUT','GLOBAL',1 ,'IMAGE_SCAN_MAX_RETRIES','f','now()', 1, 'now()', 1),
+        (nextval('id_seq_plugin_step_variable'), (SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='Vulnerability Scanning' and ps."index"=1 and ps.deleted=false), 'IMAGE_SCAN_RETRY_DELAY','STRING','image scan retry delay (in seconds)',true,true,'5','INPUT','GLOBAL',1 ,'IMAGE_SCAN_RETRY_DELAY','f','now()', 1, 'now()', 1);
+
+UPDATE plugin_pipeline_script SET script = '#!/bin/sh
+echo "IMAGE SCAN"
+
+perform_curl_request() {
+    local attempt=1
+    while [ "$attempt" -le "$IMAGE_SCAN_MAX_RETRIES" ]; do
+        response=$(curl -s -w "\n%{http_code}" -X POST $IMAGE_SCANNER_ENDPOINT/scanner/image -H "Content-Type: application/json" -d "{\"image\": \"$DEST\", \"imageDigest\": \"$DIGEST\", \"pipelineId\" : $PIPELINE_ID, \"userId\": $TRIGGERED_BY, \"dockerRegistryId\": \"$DOCKER_REGISTRY_ID\" }")
+        http_status=$(echo "$response" | tail -n1)
+        if [ "$http_status" = "200" ]; then
+            echo "Vulnerability Scanning request successful."
+            return 0
+        else
+            echo "Attempt $attempt: Vulnerability Scanning request failed with HTTP status code $http_status"
+            echo "Response Body: $response"
+            attempt=$((attempt + 1))
+            sleep "$IMAGE_SCAN_RETRY_DELAY"
+        fi
+    done
+    echo -e "\033[1m======== Maximum retries reached. Vulnerability Scanning request failed ========"
+    exit 1
+}
+perform_curl_request'
+WHERE id = (SELECT id FROM plugin_metadata WHERE name = 'Vulnerability Scanning');
\ No newline at end of file

From 2ac626ea6ba3c8c78d6eb784e8d97fe678536908 Mon Sep 17 00:00:00 2001
From: Badal Kumar <130441461+badal773@users.noreply.github.com>
Date: Thu, 18 Jan 2024 19:01:24 +0530
Subject: [PATCH 2/4] chore: added sql-validator in git-hub action (#4255)

* added sql-validator in git-hub action

* removed exit commands

* edited the grep with whole word

* modified

* modified comments

---------

Co-authored-by: Badal Kumar Prusty <badalkumar@Badals-MacBook-Pro.local>
---
 .github/workflows/pr-issue-validator.yaml | 85 +++++++++++++++++++++++
 1 file changed, 85 insertions(+)

diff --git a/.github/workflows/pr-issue-validator.yaml b/.github/workflows/pr-issue-validator.yaml
index 0a053f6ed0c..e75dd437a62 100644
--- a/.github/workflows/pr-issue-validator.yaml
+++ b/.github/workflows/pr-issue-validator.yaml
@@ -29,6 +29,10 @@ jobs:
     steps:
     - name: Checkout repository
       uses: actions/checkout@v2
+      with:
+        ref: ${{ github.event.pull_request.head.sha }}
+        fetch-depth: 0
+
 
     - name: Validate Issue Reference
       env:
@@ -150,3 +154,84 @@ jobs:
             gh pr edit $PRNUM --remove-label "PR:Ready-to-Review"
             exit 1
         fi
+    - name: Check SQL file format and duplicates
+      shell: bash
+      env: 
+          pr_no: ${{ github.event.pull_request.number }}
+          GH_TOKEN: ${{ github.token }}
+      run: |
+        
+        # Fetch the latest changes from the main branch
+        git fetch origin main
+
+        # Get the list of changed files
+        git diff origin/main...HEAD --name-only > diff
+
+        echo "Changed files:"
+        cat diff
+
+        echo "Changed SQL files-:"
+        # Filter SQL files from the list of changed files
+        awk '/scripts\/sql\//' diff
+
+        # Count the number of changed SQL files in the 'scripts/sql' directory
+        count=$(awk '/scripts\/sql\//' diff | wc -l)
+
+        # Check if no SQL files were changed
+        if [[ $count == "0" ]]; then 
+          echo "No SQL files were added, Exiting from this action."
+          exit 0
+        fi
+
+        # Iterate through each changed SQL file
+        for filename in $(awk '/scripts\/sql\//' diff); do
+          echo "Checking File: $filename"
+          
+          # Check if the SQL file name is in the correct format (i.e., it ends with either '.up.sql' or '.down.sql')
+          if [[ "$filename" =~ \.(up|down)\.sql$ ]]; then
+
+            # Print a message that the file name is in the correct format
+            echo "File name: $filename is in the correct format"
+          else
+            # Print an error message
+            echo "Error: The SQL file name is not in the correct format: $filename."
+
+            # Post a comment on a GitHub pull request with the error message
+            gh pr comment $pr_no --body "The SQL file name: $filename is not in the correct format."
+
+            # Exit the script with a non-zero status code
+            exit 1 
+          fi
+
+          # Navigate to the SQL files directory
+          sql_dir="scripts/sql"
+          echo "Current directory: $(pwd)"
+          cd "$sql_dir"
+          echo "SQL files directory: $(pwd)"
+          
+          # Extract the migration number from the SQL file name
+          migration_no=$(echo "$filename" | cut -d "/" -f 3 | cut -d "_" -f 1)
+          echo "Migration Number: $migration_no"
+          
+          # Count the number of files with the same migration number
+          migration_files_present_of_this_no=$(ls | cut -d "_" -f 1 | grep -w -c "$migration_no")
+
+          # Navigate back to the original directory
+          cd ../..
+          
+          # Check the conditions based on the number of files with the same migration number
+          if [[ $migration_files_present_of_this_no == "2" ]]; then
+            echo "All looks good for this migration number."
+          elif [[ $migration_files_present_of_this_no == "1" ]]; then
+            # Only one file is present for this migration number
+            echo "Only single migration file was present for migration no.: $migration_no. either up or down migration is missing! EXITING"
+            gh pr comment $pr_no --body "Error: Only a single migration file was present for this number: $migration_no."
+            exit 1
+          else 
+            # Migration number is repeated
+            echo "Error: Migration number is repeated."
+            gh pr comment $pr_no --body "Error: The SQL file number: $migration_no is duplicated"
+            exit 1
+          fi
+        done
+

From 0f577787a7cbcc644cdb24a395e165a74397d157 Mon Sep 17 00:00:00 2001
From: tayalrishabh96 <135199635+tayalrishabh96@users.noreply.github.com>
Date: Fri, 19 Jan 2024 07:42:55 +0530
Subject: [PATCH 3/4] feat: Adds Copacetic plugin to patch vulnerable images 
 (#4566)

* Adds copacetic plugin

* copacetic plugin: adds plugin icon and updates url in migration file

* Update 211_copacetic_plugin_v1_0_0.up.sql

adds copa patch command exit condition

* Update 211_copacetic_plugin_v1_0_0.up.sql

adds exit 1 if patching multi architecture image

* dummy commit 211_copacetic_plugin_v1_0_0.up.sql

dummy commit

* chore: added sql-validator in git-hub action (#4255)

* added sql-validator in git-hub action

* removed exit commands

* edited the grep with whole word

* modified

* modified comments

---------

Co-authored-by: Badal Kumar Prusty <badalkumar@Badals-MacBook-Pro.local>

* updates migration no.

---------

Co-authored-by: Badal Kumar <130441461+badal773@users.noreply.github.com>
Co-authored-by: Badal Kumar Prusty <badalkumar@Badals-MacBook-Pro.local>
---
 assets/copa-plugin-icon.png                   | Bin 0 -> 8761 bytes
 .../sql/214_copacetic_plugin_v1_0_0.down.sql  |   8 ++
 .../sql/214_copacetic_plugin_v1_0_0.up.sql    |  81 ++++++++++++++++++
 3 files changed, 89 insertions(+)
 create mode 100644 assets/copa-plugin-icon.png
 create mode 100644 scripts/sql/214_copacetic_plugin_v1_0_0.down.sql
 create mode 100644 scripts/sql/214_copacetic_plugin_v1_0_0.up.sql

diff --git a/assets/copa-plugin-icon.png b/assets/copa-plugin-icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..0039b17c00c2b5ba4478a80bcd7c879ba4cb32da
GIT binary patch
literal 8761
zcmd6NRaab1ur?ap-62?TCj<yiaCg@r0fOt`!9BPW2=0T2!QBUUcbUOm5AXV}zF%<8
z#kTHRU3+zPS9Lv4MXD;xV4#ws!oa{_$jM5nzdwimyO2M;->Y=1b75dU!pKR9YkFlv
za!|7I`<LDVwAQ`~jk1GS?|?|7eypG1qFlWH3?zLb?e;p*Od`Jed;!BHHI;rB%f&E7
zE`=A1njT?OP!lym^CvK{b`_a*u&$O709N#zdz+~zM}u6Cx!q0HXB|8_-|Q&fX@JMB
zYmUpxOUeb1gCmepLa14(gRnyo>9B)q0}&*!2@}MSd*E=9#dXEtXpqrlsS(Uz{}+S=
z{=$*C>{yJ%UKO1wrpmQ|3m*tF@HQ&R+_!oLYK$6c{q0{Hj-c(gOlq}Kq~I+6cFCxo
z>O-!*-*RQ7AWfn}I@nmg6qasWec>&Bb&1T*90WY|%fI0G<SsKwbFJ~>B1fH{`nTYM
z1#2B|Xt@C$1O@7O6;rdfA#4#;jTTTaLY;`Ev?mi{2`21(-mM&W97{BQ+DQ&U-t9rG
zgFlG1D@uNdtW}{CO}sjauDKCCYNS$DTjlq9F~~o`;5(0_NjPb8D7fjO;edFKTKv+`
zY-)y#()SxbSrF+Usym&;1nGC*)3+vM{9LBjr#D1aOHkvyV26K((uOL?w|NX<R>zqi
z;pz}eOipq+lbaEb1ZGkBFWQMhwvT(W0W-ACEw=GCWXO`r8TZ;RGZbNQj_&aM)$Y?A
zhLe+7u8?H)*7X{i<q!UnpuKjc<qG2`9IWa_YON2a)Xv!2vlo-U9zKr`T`tFaIVn;5
zYh~=FvK2TKaH5~^yAQb4yhI=^AQXtXIgb)fd0e=z@*P!malW?_EFhT6e*2;=rJ0Ve
z7d!0*?43lZ`Z(+2h#xISx=wE{VL{AySr%XH4V7VSxmVTLroj=S$u~J^!~%*n`tuO~
z+RQ#ewWg8YVtaEY<gVeWQ4)NMdm4!0ff}?q4Mh*UR-7uos|mB4drfbKlP=?29qYuU
ziIl{xG!B9ka~6VZKws(t2u&VO(9|DGDh^4&v5kUJ&6*J-Ce>&jRrbj!B!!cR@@JIA
z6m9G#&^?_=runB}IKF_@N)B%e>(Y`DCuNtWGuEL(=kdXXqJYgt#^18cL51bWhB+nk
zHxrxN1;+B_CgPb7K9gd5GDz3G0V@S1sr>RfQj7iI+qEyc6?u~y!!{)a;dln(@O)IK
zpQBz|zbuw9ACAp)`4j_t0B8-H-fJnZ<W3FLwhBdyFTQ4ns%D|Y<G2ZbjuBuXD?(=%
z7a)^>@*z7D{f}i5l}Ix8BWLWBg2ulq+(Z~K@$!NzSzP9VM9HgDKw7D`CwBiv#7efs
zk^-PLBO0h3Uv-5bah_c-y^SMRAeI9Gg7D!@*4#JH1(U@G%ge@7uLDZ*q2YGh{pR*t
zT3k8WgyHtNemo!MRGNwOpYpj0PS4n=k(XR+_zN=^gEyK&t!5>zLVKdLAZE$c+PQ4B
z`V`(~ht?n(XW)W})JG-+m+#g3E*pBwp;OfwUj$vkILL{HY9|`@7AKf2?<XZ?_ghjs
zY68<>fOntGzgt?L%6rk%ABTHx=dB8g8F{UUxo=_k&E3_jFUq3;;E9-%{xY)KD2`~;
zy^nmxsT95AGKiOm&Z_3z!c5~{@=d+5PqFop;DFZA>O_bsT=WsrlI-t^InS`cC7b1|
z66EpF*|D#3mN%TX2pon{GTVN5&a%38Kh9h6VowMR;w$@M-&mATO3-Cm@?CzYyH%=4
zL#U(xEt#k5BEGFmf`JZy*^r4Gt<aI-Y3BMjlLpLg_T_wS))UKxrdvtD&BMM$nvfgV
zU6>$ZiSEtWTz(9z7bN`%8+RXOZV(K=X0lGYygNHl_Uvb1!(u%l`B$g;WT#0dQo^(C
zhXjmFD!xz_<?pV1lemkFytClc^}Iy|3hyUshYUTPMPN<zWV`q0ud7SHlh}94#DWtk
zi02~*S3kDZ8F{j?2Y7=-E<ck=1fZY_P#W{nmFMbFWnPW&`xTOPAYv@J50w9T6Km()
zc?{G5%+Wyp0h~>54#N9X89j(q=jc;p$Zssfj-l{#7Y7~-gv&s15Y5+4F4rbJs<nX`
z?*tKw<ULo0$ANF4Q?VRgN_`Rmmp{s_>p((WcS*szOiE}=5A1+>C3hjr?c50MN_>P5
z%~TE#on?V4T#@4Tc_8aPSZ*f+c+dEKhEQ9aX0Q4OFL^1R5%J_i8HdF7xsXnA$HIE}
zN>%j?qI`+pqOQTZjhzmer0m1>Kt|el<zma~RSeABXipw-RX<(n7Xt|bq+?tjjd7Cc
zChd`is+1=G=m{AII`j{2u##y|E!>p~$XAY^{{~4~JDNFW&tp60jWAOFj*h=HW^Op3
zFEf4Hiusx-a$Vrb%+LNdR$cRR%Qj+e7;L`$V)-4#K_rd!*)NNW*>dyBX2B@+?<bi0
zBJ8B+vYDDXKuwkx6L!9{r4*>tSVnp>!NKEfVg8$>Y@Cmk<YWxzNmaGNOu}6kGL#2}
zcbQ2>es$IQIHtOZ!W{*S&_fb!YcR4cxTWudvW0ne#y3#;iN8q(bUI@Ay{9ktc*SEx
zH61c@Q+$+rHg=dHMrWy*?`(89R+54@wWLjNu8(tnj(lT}GP}$~n=-t@ZanFgkpo!k
z5ekxZGWtWa><%jqC--fA{qNI>#8mi@h9<wMdQ;tk6;~!K7h}Nk-*$)fGh!8?BY@rB
ztIdM1e&v}E&pP&nDxO3$Km-GlBsPnEKMz|Dou!;eNP3D5?{K{HFY#hd$f)?GW{}W)
zM;ymE646&%qaOqKDQVLj=uVd~lWT2~QSv(IF9%6|&Z4}aQyJ9=!e5BmD#CDaFTDE&
zCyh(&YSsR6+idHn-)t1FMb;c2y6n@1o<4xn$}Y`wVv+^0{FmeIX&<a^FZ2TsoJ3$<
zg{e&=k$FvpDoOPTB{QF4)xu8t8WS|a*<|v8rQRS6)mwb>Jhm3lX(UWEv@h>`gch35
z*DBTzTyTpVA!-g0F={a=8Lu^f9aWI>k=;~H9!*|{>dhuBN3~@YzjY12c*th*9Z3|B
zqo1UQFq3?6{sS`Tz=^c>V%*yR$6XmYxQ|!Pb%WFJ$qts-B!l@%HxJkzeMY{4__zD7
z2zQCI^YM@vxWdrn$gAQpz7M2)$1pGHr>7?y#gG{eN9S(Tj(W;oj7TfQL7o~h+w8pm
z7*hA`AFS9o(-~zZNF&c=9(fROS<LM{*oTOr;z7=T5d)dnw&mxTYWl=V^iuq6vbkBS
z{CpQ5Ki_Kkpr<YS=MszT*Pi1Um;Xox3qf5^hOdC%;r)M0SMMnJt3qNimP7*^T~E#}
zv#s`{7}f^?y*L1ASb`&Ky9ku*=dwKtDlj6XEAS^e@lcRqbAM2=)$U_7(JX_oN;HB*
zgLX2u1|?{F?XpyXA^ZKvrq9N_i`dxh;VOu)D66DNLWf<T^;cp&UBs>DUTTRk2)im5
zcE*a%UX%?NdFptosD()l#GNP>p&j4zZp-6qokzbbu7!F(IcljavG1499=|3$UsfgG
zg{_9j1-ozTP5ygT{W9SJxJ-E0PmllW;!9ea#@8vfU+=n<x`VP4@?ZYm&5~3@cCvYw
z+9bA}?yo-$sD~s=;sO~8bx3>n{xP=}bGs=ZJ~K;7|Lw~q4Jzt~TPcS?Ig_&{ob;+m
zUmcr0#-3R}m8C6evDJ1cnreh1cYc!^NGOGo#G$*y--ldtAaWa|5hHe89Q~8~Jr1xC
zb)WP6VD}P75nZgH+0n+=aFpWk_$B7cN=jP^QxrKO(VhAvZH@tdMmQOrb~5q1rS7l)
z1pNs${^q&Y!Yk9Cz#2zsJ9Zh(D{Zs<VwxA!6SXKcMDmBieI8%uFnQ$}b&?~A)(D>4
zm-YGecOa8|WceRgzT$GRjTnZfBT{$^G2370Zz+882!_j^MzXxCf~rP<CozYFktsQ%
zQhgmONM^If8L&xnQN&bB_I5w<M7>1d2J9My4jmG`U%OA1V+#dzE@3~83W09U7B2>$
zO*bgYx5!>J4X7^PZjbNhS|@F5vaq0Qh@>64Q~^77B8LI1_&uE+(>PEZkxsHf2$xdt
zqn!eVaBYDtl}!q*;cde!bDg^Wt0mG2y?;A<MC131<_N1$^W~1hG}M5Q_(dC-_$pM>
z8?ytzqft`L>)z|uvTY}jUG=4^KWN#Huje#K?nBb^NPNwe&=2YNkVvEUaH>^yV@v8I
z?bUgl7<wa}4Xob=+Rb-h#ZC6`wHc+R5vM<RpBEx|t0ILBf)&IWJL_wzO22IawZtJ+
zv8+j{2rgQ=!JrRzgQ03<+;4QG7?Hdwp(Z-<+B{a#b;k)op3!cV!uT)Zrx5G=byW<a
z?<|9M%vbF7TIDG6_hT)Lq1~Qt6nX4{bKw}z-mb{fe7E|nOhD(U-C6t4{C*=fQg_W~
zFYiAtfRtK31$MeyrgD#!!3CRWhcAcjRF)Dd-|aHPu4vn9INdg5+R>=lgM^)$u+sJy
zO@8auz;_x`309@P9U<pgIH&J69<;o%Qk|MmKIMA-1u@?bFLgM@T8U(L8j|%5A}PnY
zjxE1EN%F;<<cAov0>37o=XqC=tm|EDei4a*xD?=gHu%@+IMWL!9M%)a<fpaDuPP}-
zAkYa4-pUau_FE(-v}@xu4e$BL(R)*Ict04)M8V-xksrs^=l7G=dI(1%;Okj&csRj0
zU}Qd3GB?hA?Tc)*59QjNx4fbCe1_=df(tadH$iDjQft%FJ9|Y*+&>IpvQRrg?hUoT
z%hGcNlNW{dn>7jEv14R2V1{`1q^193CMIlNubgUW^1Svrzu*&}Md%GL59{qZK$B#Q
zgqP{edJuA7tt;hPB@(|+hYv#oEI)T-#2l@rxq>d>Z&5j;6V@<>9UMgtmwWCYW%27Z
z;sb8f6I}kBigtq;H$Qkjgop^5_R%F);%^49%ZitiK6I}bu$<rigm*lh?hUXacX(ZV
z;qh*{dgzLRL1j_)=M)TsKK4@Vq;gUXVBH;gS(L=-cpiEM<l#{M;}&ZAI^z}1s0#c`
z@v?`6c&smQ$<3Ivl?W+D0!a!qm~H8=;Rha-5D3K~+gIbal%|nZ-+&71YGc7{5^Ng8
zC!^?XE%YJoYLDzzRCG47F-Pmyq3PdQm#G43jDoHGT?5Nm&{HLb<qnnuqR>~owJE}t
z4iRbZ_2>2poQ00`(0Yh@G~-IqjPU7i6Rf1H>CFe{`g~zdpFahrHHFneOlKt93KzT3
zvLsqglD<9vFv1p!%YHqNJuIM}+1|Y*Y7RTUZp9W^bu<NN&D5R(02pKU!V!Q}gh}kJ
zu?1sWVc`gDG^<7HM~6P*(*QN*^UEeYXYj5sfgew0=V+A{E+1Ezd_|`FB($j#z3xQ8
zAXrUk>Q|lDz)<zEk3lG});B!YpZ?DV9;Y{|)M`jB+XI#ERbBx#I6ze%;Ydx_{ck|f
z(8rF?c2|5wzc)TVp#jeq*z#*-x4Z49<d0Q+x5f2NUsmVF!xCSdHO)&dmz8m5JPNR4
zRVgs;c;cvTI$pS<e^h^O!$V#rlBJ5ygqY@pthx38n&a*7II<+wBy&BZKZ-6HX^^x^
z9o-Yn$+9jIyiM(h!#;ys@dgnvk2fI){O+b<8MdSe1)E-js|VDo2MI5?vk|mY)hD~w
z@Th{zXVIV3(Q#od+}iHEKS%Yiijwlrd~AD!B;ds5KqtF<ezF4ZCJ1|)_AQHHiU=7W
zmV|>okEQK>Bu~x2@~jS>RG}CBWv1RlN=b5(Hay9eLPaGZLQvAVTleeZS~;%Zz+{|Z
zq<cXl{WJ5#hg#uWKqA9jABH;HkGdQga$g`0B-1b2;_nx2aui*Y8T<mNj$-bS7j0w|
z@@k^P-}AgIKl}d~eW@PP=*>@Gs?#$=7IS8L<+QZ_CC%(f=q_vfm3Y!TLm5?(zfwN}
z;&!#rpo8~Ws)bDpv9;NPvHyY1Y_2X8dNO}ExXcwVwP~}4U53c{ueCXfDz7L9-!+S%
z>-0y^T+xRP0l{UR3i#Mo^r!2AJ%643P<+Byvw|ooq6t!#fo)OeW+jxqWAPJ;oovZA
zk1HMl`Qxh4G=lGe+=(#pTg}8xaiN$U#ZR>H#a!<|MN(E;{4JT+4~O#@I=$QBO#-oN
zSJQI1>DzxNHpfZ*YvC8l)YC7HuL;sEJgpVM{v_x^6+0YvVn(}wQ?|)k;A(BQTt|z}
z?g&s2Iavl}#;2*CBLTAmk4?8w6*|&}_v+`{)zxF<BTzOy!a{|_?Kfe7MWe=7Om>D1
zZS|qpQ@|o^s`o|I%`ml>ez&R@dIP}Qba2srDu|~y+5qVrW=}@HQ?=IMB&2VB^0Uj=
z8PTMj<>#Tj4ue7}te}r-lWIWp_)6l9E2+AD9h?tnid0G?r1ZJEczpw(wmG>Z6+j|<
z2bt?5F7zXoz+sCD$tO~`!WA|dS$@~Eig>EHI}wifAP*yIX~N+EWKmYsQ&9!91^;o|
z61dJ*YWnPxSzJJQRo<rU3!mZS%eD6QG&v$TRt04xzHgg2EO+H8u#8Lj6aOHDc8&kM
z&+q9(|CO9X#vu6eQ}5ik^WQTwmjzQ3;|4oYH_ZTNUD1`FByfurA>}4O*BWb@)MWK3
zMACxsVlwAz)n+YJ-&&Qy?}U173)kAtwoOq5`ayLcNGN;8m3OxCwUdr${k-xyL!zv<
zhH^<G7d%3oT;Ebz1Y_Y<vJcR}jgTsbW4ZmtgROpz-<(u))(c3zJZC_sCu+9rInY1u
zrnBBk1gp=Z!u-7zDfDd77wKt7&e!hM6Rx>Mma?-&<x>XnoepSo>4HrL%5wwXJKrv+
zM(v=hC$@FwYOxW^w$t>{-oEp`Zn?%}J!xt#k<ZMWweVQht(Z_R337%sOBOGG^ATG~
zkSqU*8r43fE&74GMo(m{_BN*;V6m$++MG&DLsw&<YA##RwS!N$cPU5ZxlP3%r|&ni
z(dzVHHkleX!qZxrUI^GI*{=Y%PH44)vyfn6v=rR+OyM&tB2PzWL9Z1WZBhs596Trt
zFTey<vGHt^{^JZdM$-9k{y_7TWcTh}PMHMS%>nzPrixdTQ;SAy=PMY%gK)<xd;Nvq
zITIJlbfQ)<*P%0GD&yyzFCEM(-8>e4EkHe4eovWC*;xdUMdLkf2aNa5qcArO-q<{f
z<a41rOU_JQkG@nM6gax>Ek`0VSRi-@tSWR%qJ_w>Z0*fJ!^+oN#vmgP^)+X=ugC|-
zyr8nvbD#7()0|K5hti7o{e94M?Js7!kOjJicxjR2cY$?~xa=A@46|0cAuTRpNnu}_
zb>w_q)hxWsrjkW&wedwvh*7O^1|{1upU)n#mnoFkIt4&SDn!WP!7{<z+11nPCzr<_
z6aj1IM(apV=;#yEy(qC(0SDFH`d;JVB<z_464s)U8)HcUh#H$aKFk8mb~A6D*Y)R#
zdtOX-3GkFAc!t+KQUPBBX$Fl=^vr$F&#k*JvZYmQVgvI716GF3nY`A5(}gd+y{5#Y
z2jSnW{G6DOw)L@GVgg}>pY=GO#Rjs>)d>>3e2hk2VfG~-!ecK)cNsVw8a+3-a$mTK
zC-6nWMzZuVG{#Dz{t8Ao@n4uU_sy$+ZRT>DHVv@_seHf+j~VY*!%MvHpZZ<BUuD~n
zFdgNf<uZ*y#Y^btGwJ2*mvIsQAQX(2d;d{jHAnzE@qYTq#lWk5_m(*ApgeSgs=U$h
z?3W(ZkvolMM+3d?>pZ)KK>8IQi;+6Xz?~}RA9$fw99T4tYc8RMVy_>;a8EzJd+8*B
zF;RTorTTaQISaY@e`p6cS>s?Syu2i;+iPrfl9m(D7f$=#akE&^eSK7QCuXwc3;B+a
zRVsl_qNchf#o)wzzQ#-|g}MrT^MESkcl<F`%A47ixyMd;%s*p^h|2)8o}da-p8O}w
zd<u!KZ<j!>R(8@v9QcA&$R=b|nUI;^-v^u)Z+si9AtXnWU_soa%#iOKRw^0bK*17(
zJx^@<bT^UXH=p}YMN^<LMYD_nbrSrtgtOg=fpQx|wk=lo4zQDd3`y=3z6WQ3LErz&
zt4Q2}+()ZbvQCSYz%oGO9=14p{YOBv!+Wa6AH=>i@>s=U;<>_(5@Lf!Ou7j6>=0zR
z&AB%Zd8C%AkdbY2ibP8aW)o+7&+#69oI*tDNBG}G=iYxsD~vC)PK8E0u`b_m^GP97
z;`mYZve1bR4{ou9Dc@i%6W<;MS2j_-gm%AQ^R0+D3V-AEFf)cek~IWDq9qF9+MmRJ
zH2qXQbp(5zOD%0k*JDzkuK62bi&h-XZk9rgii+%D+ZQ_Q9zHti4xz=n16%lHKwL+%
zAEez8W4`X}z6ChR_8XG%HtV=ri-&Psh*!<^DcaG2Ax^{00>r|WOGm)bYRTdkRX2}e
zF!hHp#0hQZbt`kvJD60aeMUk8*A8<m$M59STct&WX%Sa$F8C0aKFkuS{q|Qx-mqT-
zJ-ndQ3QXJ=pHh0=UwKTP(A>K|9c4(Lq<RB2ZfQGnTIb{6Ev6)V%&J0V|HmYPpr1t;
zb)5?xI8(pHcKmv0qb*vdr%0$;`&#=KitOFYX^n*)#Sv5ijzLY=K{!ksS4@W$oV&O3
z);qZ*Cs%jFn<idRDx4g$$MQL#ArY?4Sz-3ElET~JuD{SbD0%W&TC*{!(|$R-04Tc1
z7FARn##K)R?2zEFcw$bQ{~$>vB;)fKo$S`0b$qbtSbKtQmx;AD?yLj|C}xo!z2L`*
zh&_{G;#tQ%h1>N*XAc4U?~&3`P?Zs|!Xzn6zWDaI(+u^!(XlSHSSMFO<UTRXI|}?>
z4{&hozdb6JGACJ)eAv$PopaemRXS+Wd^>xbRDA+xJrBN5U@kDu+f|rAR#{L`8f4{*
zb!t<B|IzG_N5+;5qkxsEsgo#u_+5<6&9V#D7*(o}nYCPOn)lROG*Tc(Zb?3LKu?iO
zzOzoLrd}_Gh7M5fF;l0-f94ru-P@K8Ojp+gHCj05vB=Qn4nO=L2&|r}2DpPdN?Vkb
z>omUovJ7~Fw9d-de>udZr2Io`u?)+?5-R<I6TuUWfQbnmLh5sYX0zq1-Hw=I9L2oN
zPqhEs-h&lfO^6U=?k0JL`c+<!c}e#LzOJ?;mtIlgPM#T&E_TBh$Pf|ZI<h}LX5_pt
zWR;z#=?^3`zjZy)ry&EiA*0!A(n|uBcvQsD)_$azI<}M^4+g2Jwxw#vEej+S4JE5e
zOlS_zR2m+%wc;u{F6^3bVhyLf$|kwV1JEoXo9q&nsAlA)ZH0POuNy2%B0`S_r$|{z
zG_a4ll)EB4`0?UZ&O)JR$TaY;CRWmLySHK%LT9H=vq36Np>M0l3}eMRhR2+XYN=2Z
zVT-J@Gt`nFA525Bn0CjC@gsX!QHMMM**LYL?Y3*FW0-l6ld(7$PFmEEP`C51e2ja4
zbMbf^OJ{D)>y=Dz0~x{oSZ836k*Myn?t@k%`B7h70_(9iYQTDBXZ>+)%Rt=Aw_h*r
zd&wTvr*Ve}Dw3>JNotH4nLLHGqG#3J#~Z86Zv+0vd6a^Kp5Y@~UOB<>v}YY=nIuA>
zIuU(Y-sf7er_pz!;q23xG5JO|KB8ZTkftj?4Xo)F<(fJ*#)qhb(^-y23j?@D(wV$Q
zs3F|BCN;XMf17a2r(D2KveNat7n)@m<x$GH&;WPOAVOQ`c(yRNT?^~@iz=P~o02B>
z3GJw#hZV156yQwaH7yc9&!ByqjN?aju4Cw0{+)r3qfVoM+u&d<YGK1?UT`u|n(>Bz
zG~V0lz?EFfJ9JlQH21N(a*gR__En<CW1B2fyR(Qlr)86Ur<Em*bC_Jkey`|Cs&MiA
z<f*hbMC!K#JUTRQ?T^Xp{?8XBlw^vp6s#?s%GD1`Bc`Pd#vb*yf|}RMJK&`o7B#wl
zp9B?5;`T?&zG|%r(|J{3UhooJO#kd$qpd-!(|n?$tU0CiP+|<!M(}i21nfuBy4_4B
zVfRle1L34Q!~P<BSl2cIvd8len_2tafhexCa5pp-6>!d<5S=aP@L0XA+9w6F<JFbK
zv8$TNUc3GnOt=Lf)E6)Z=8#WcpcrS<Xu%F}hYc(Do5?nvoVP9IPNd7c6Ef;J2|1Ly
zIG=QlKYB=kJi33r4C~oR9B_wMZ4|(V`SVISrI^%UvF)PAd7kR(eZ&Ql=)e5RL&D@n
z3cqB88#rIC{-@H%%ji+;%=Q7C`*`?5nvK!v?=d7>g;LPkfaCtfHoJm+5R-+dkp>^U
zM85hkP58n+QD6-#^H*GEe%l<F#G{?Ekz4YKJkI>phXTpu6Z+|+=Wnjaf2tRn2$s!!
z;r+}Ls%h4bgV_%{L=qQ{pAqh=1nJnFj<d3mO*huP<KJq_&u3_jpQdr;+#{@A>8OK)
zDR9LI!e`Z6u4?IV^_VK3yIp<5Cr-y)eT6%|=f5+2ZyQlvanKZVIM<6O;bBox7C)Pi
zvva*1?`n!SO5ODq3qVSCI`T$#cd#Pqg0HX9_UFKQg=y42+QI^-99Ju+dY9<g__Rb4
zb(h|R%;ZbOu(IJ(6GL872$-d$&>w6kS}7Z)R!J935;lpx<7Ja(PX`L%q75AHzY6%x
z%d`L63FwheF%-F|_U|^lz+2^?i0n51DT>rU6HF8}Oo&IjU`7AZy=5<7kP`!i(kjjy
zg>3By$xA?@vwAJPAzlQG=zsJobo$fMl|s!G_+mL;*I9`=wiQQbn&x67oCbI?xyon-
zfXWEBFeG52z77!ctk%gie4P%ty?*z<nm+%p=RF>sPPIIhkx8utR``NbA4K2c7ySF8
zE0ScjLKO~L|09H*Civ|G9*8XN#<Gm|8aXbu%f*iQIRN5Y*~+<ealHiWo^7wQ(5HP-
zJxC*mhtpTj!{s};npuPxgViR529cJYn=wsj$7e<+FaR2DWN4yhE#?inI={G)*cR^6
z`@lTqvz6`FVtuNSr1N~8c-MB@kAh;L<#`eOcqSLd<G+cr#g;h|k35{q=KnCPm$i{T
zcU;ec%YdD<S{9!@6L5Sz8XRm?#!L*0B5J|;#`Q+<g)Bu@xiEw`j|7Dwvo1t$rb578
zwz7Pw;Tk%kH2SJ{?Q?PxBeNazH9u*8RMDvFj9s9jMx%VBv!%FX2TujXF`c*bBTr%R
zwRO~VhWIQbLkQ4&x?nA|EcJ^zLR)s4y_hD#^8Zj_!~b7w@%;8)1@iW0QY%)eTUapr
P{sAK=tt?e7VH*5Dd2KXQ

literal 0
HcmV?d00001

diff --git a/scripts/sql/214_copacetic_plugin_v1_0_0.down.sql b/scripts/sql/214_copacetic_plugin_v1_0_0.down.sql
new file mode 100644
index 00000000000..5f9933bc864
--- /dev/null
+++ b/scripts/sql/214_copacetic_plugin_v1_0_0.down.sql
@@ -0,0 +1,8 @@
+DELETE FROM plugin_step_variable WHERE plugin_step_id=(SELECT ps.id FROM plugin_metadata p INNER JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='Copacetic v1.0.0' and ps."index"=1 and ps.deleted=false);
+DELETE FROM plugin_step WHERE plugin_id=(SELECT id FROM plugin_metadata WHERE name='Copacetic v1.0.0');
+DELETE FROM plugin_stage_mapping WHERE plugin_id=(SELECT id FROM plugin_metadata WHERE name='Copacetic v1.0.0');
+DELETE FROM pipeline_stage_step_variable WHERE pipeline_stage_step_id in (SELECT pipeline_stage_id FROM pipeline_stage_step WHERE name='Copacetic v1.0.0');
+DELETE FROM pipeline_stage_step_variable WHERE pipeline_stage_step_id in (SELECT id FROM pipeline_stage_step WHERE name='Copacetic v1.0.0');
+DELETE FROM pipeline_stage_step WHERE name ='Copacetic v1.0.0';
+DELETE FROM plugin_tag_relation WHERE plugin_id=(SELECT id FROM plugin_metadata WHERE name='Copacetic v1.0.0');
+DELETE FROM plugin_metadata WHERE name='Copacetic v1.0.0';
\ No newline at end of file
diff --git a/scripts/sql/214_copacetic_plugin_v1_0_0.up.sql b/scripts/sql/214_copacetic_plugin_v1_0_0.up.sql
new file mode 100644
index 00000000000..db969a2a1d5
--- /dev/null
+++ b/scripts/sql/214_copacetic_plugin_v1_0_0.up.sql
@@ -0,0 +1,81 @@
+INSERT INTO plugin_metadata (id,name,description,type,icon,deleted,created_on,created_by,updated_on,updated_by)
+VALUES (nextval('id_seq_plugin_metadata'),'Copacetic v1.0.0','This plugin is used to patch the container image vulnerabilities (Patching for Multi Architecture Builds not supported currently).','PRESET','https://raw.githubusercontent.com/devtron-labs/devtron/main/assets/copa-plugin-icon.png',false,'now()',1,'now()',1);
+
+INSERT INTO "plugin_tag_relation" ("id", "tag_id", "plugin_id", "created_on", "created_by", "updated_on", "updated_by") VALUES (nextval('id_seq_plugin_tag_relation'), (SELECT id FROM plugin_tag WHERE name='Security'), (SELECT id FROM plugin_metadata WHERE name='Copacetic v1.0.0'),'now()', 1, 'now()', 1);
+INSERT INTO "plugin_tag_relation" ("id", "tag_id", "plugin_id", "created_on", "created_by", "updated_on", "updated_by") VALUES (nextval('id_seq_plugin_tag_relation'), (SELECT id FROM plugin_tag WHERE name='DevSecOps'), (SELECT id FROM plugin_metadata WHERE name='Copacetic v1.0.0'),'now()', 1, 'now()', 1);
+
+INSERT INTO plugin_stage_mapping (id,plugin_id,stage_type,created_on,created_by,updated_on,updated_by)
+VALUES (nextval('id_seq_plugin_stage_mapping'),(SELECT id from plugin_metadata where name='Copacetic v1.0.0'), 0,'now()',1,'now()',1);
+
+INSERT INTO "plugin_pipeline_script" ("id", "script","type","deleted","created_on", "created_by", "updated_on", "updated_by")
+VALUES (
+     nextval('id_seq_plugin_pipeline_script'),
+        $$#!/bin/sh
+
+export appName=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.appName)
+export registry=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.dockerRegistryURL)
+export repo=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.dockerRepository)
+export tag=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.dockerImageTag)
+export platform=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.ciBuildConfig.dockerBuildConfig.targetPlatform)
+
+if [[ $platform == "linux/arm64,linux/amd64" ]] ; then
+    echo "platform = $platform"
+    echo "------------------------------------------------------------------------------------------------------------------------"
+    echo "######### Patching Multi Architecture Image not supported #########"
+    echo "------------------------------------------------------------------------------------------------------------------------"
+    echo "error: can't use copacetic plugin for muti-architecture builds"
+    exit 1;
+else
+    curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin v0.46.1
+
+    uname_arch() {
+    arch=$(uname -m)
+    case $arch in
+        x86_64) arch="amd64" ;;
+        aarch64) arch="arm64" ;;
+    esac
+    echo ${arch}
+    }
+    os=$(uname | tr "[:upper:]" "[:lower:]")
+    uname_arch
+    wget https://github.com/project-copacetic/copacetic/releases/download/v0.5.1/copa_0.5.1_${os}_${arch}.tar.gz
+    tar -xvzf copa_0.5.1_${os}_${arch}.tar.gz
+    mv copa /usr/local/bin/
+
+    trivy image --vuln-type os --ignore-unfixed $registry/$repo:$tag | grep -i total
+    trivy image --vuln-type os --ignore-unfixed -f json -o $appName.json $registry/$repo:$tag
+
+    export BUILDKIT_VERSION=v0.12.0
+    docker run \
+        --detach \
+        --rm \
+        --privileged \
+        --name buildkitd \
+        --entrypoint buildkitd \
+        "moby/buildkit:$BUILDKIT_VERSION"
+
+    copa patch -i $registry/$repo:$tag -r $appName.json -t $tag --addr docker-container://buildkitd --timeout "$CopaTimeout"
+    if [ $? -eq 0 ] ; then
+        trivy image --vuln-type os --ignore-unfixed $registry/$repo:$tag | grep -i total
+        docker push $registry/$repo:$tag
+    else
+        echo "------------------------------------------------------------------------------------------------------------------------"
+        echo "BUILD FAILED: non zero exit status during copa patch..."
+        echo "------------------------------------------------------------------------------------------------------------------------"
+        exit 1;
+    fi
+fi
+$$,
+        'SHELL',
+        'f',
+        'now()',
+        1,
+        'now()',
+        1
+);
+
+INSERT INTO "plugin_step" ("id", "plugin_id","name","description","index","step_type","script_id","deleted", "created_on", "created_by", "updated_on", "updated_by")
+VALUES (nextval('id_seq_plugin_step'), (SELECT id FROM plugin_metadata WHERE name='Copacetic v1.0.0'),'Step 1','Step 1 - Copacetic v1.0.0','1','INLINE',(SELECT last_value FROM id_seq_plugin_pipeline_script),'f','now()', 1, 'now()', 1);
+
+INSERT INTO plugin_step_variable (id,plugin_step_id,name,format,description,is_exposed,allow_empty_value,default_value,value,variable_type,value_type,previous_step_index,variable_step_index,variable_step_index_in_plugin,reference_variable_name,deleted,created_on,created_by,updated_on,updated_by) 
+VALUES (nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='Copacetic v1.0.0' and ps."index"=1 and ps.deleted=false),'CopaTimeout','STRING','Timeout for copa patch command, default timeout is 5 minutes. For ex: 10m','t','t','5m',null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1);

From 83889d6c1333193e8b8a0fb4003bf394d9bfb25e Mon Sep 17 00:00:00 2001
From: Rupin Solanki <44662963+rupinSec@users.noreply.github.com>
Date: Fri, 19 Jan 2024 11:55:28 +0530
Subject: [PATCH 4/4] feat: Create Dockerslim plugin and Create EKS Cluster
 plugin (#4525)

* Plugins icon

* eks and dockerslim plugin sql up

* eks and dockerslim plugin down script

* dockerslim plugin after review PR

* Changes after review dockerslim

* image changes

* new image dockerslim

* eks creation plugin

* Final PR commit, eks and dockerslim plugins
---
 assets/dockerslim-plugin-icon.png             | Bin 0 -> 8061 bytes
 assets/eks-plugin-icon.svg                    |   1 +
 scripts/sql/212_dockerslim_plugin.down.sql    |   6 +
 scripts/sql/212_dockerslim_plugin.up.sql      |  58 ++++++
 scripts/sql/213_eks_cluster_creation.down.sql |   6 +
 scripts/sql/213_eks_cluster_creation.up.sql   | 178 ++++++++++++++++++
 6 files changed, 249 insertions(+)
 create mode 100644 assets/dockerslim-plugin-icon.png
 create mode 100644 assets/eks-plugin-icon.svg
 create mode 100644 scripts/sql/212_dockerslim_plugin.down.sql
 create mode 100644 scripts/sql/212_dockerslim_plugin.up.sql
 create mode 100644 scripts/sql/213_eks_cluster_creation.down.sql
 create mode 100644 scripts/sql/213_eks_cluster_creation.up.sql

diff --git a/assets/dockerslim-plugin-icon.png b/assets/dockerslim-plugin-icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..6653a8edb6e2f84d65b61a68b6a89a8330cdf87c
GIT binary patch
literal 8061
zcmeHsRa9F~_$@6~ym*UKXraZWxE0p~iWhe&uE7hG;?m*-La|T+ga(RBi@O)M;?Uq$
zg5L96_vt>|r+Xj&D=V3m$(fUxZ@$^z-uuLAgH%We=?Jl~ut?NY72g7F-+%8%c)(|+
z5fTP8I1X>L-e6&&l8J7taDneEHmYy6u&@GOU}1guh=p|pbbZ*t!t&+E!uo58g(Z=N
zg+=R;+oU4}{D5bzp`wU&|KICtYiTObgYToJrG&puOhHJ?ul4eSFBTS4xSHY{J;?n2
zl0%BwX5RMkq4@UJScoKtub#gK4}luz*W8p8xfqrR{&A66h!mtpSGT!FU$?gQu+GmJ
zZf|No3~?cT5=ruc07w3-rP@atLQeeOZ_B5|OQGv?wDs482L8;?KORlrpW=--g`6Db
zZewIe8{hhv&5+9{sI`vMvvm1q<0wADrg+RstSa}BpXC90$A|yv_<xB<3Zbfew479U
zD7MHmWF%h(izk}_@5gXGIlMy8yP7trnVAe;(XqSTro<Rc!f~&6<jtBQ^X+GMhgNx0
z-pM28wH=1PWYzVezj&UK8f-R}c`khaHsEWF63zKq$JMuxD0AV1oBbE{rD0q}AtpYH
z_l7xYBh^+VGjo0U@nE&tV$OPDpW7;QK#je?+l!?Gy4||xNHoTnq%o-;?2yfS7hXvG
zIz(P)*?D*SNG>J4(QV5?qOUp&X-%z0z({wiBT|1E@N=$L+#;<3M!b0*piJPo-_yEA
z%>qZ~o_%s8RGwX-wbX(^pYHnY&8JiU3}o~4`+*B79q&cm@wYedwm%M|=EbOLs~Tjr
z?VRgw6QMW<y9Z1~H%W=MG=4PSpm3tEJ6Zyk2RRtu;1$OH7L2-l?_ul;UnOedpxBPQ
zc#uSjV+>ojSF1~vf(HDyRM(s-qfe+V>+j7lkmU(~B0)j?pb1%oruC7a#?{y9xnoGc
z_^-gZ{_1hEUsG&9B%jX-6d%iX@f#lY_#@)9Bj><Bl3~DnD10Tho=Bml>iySC(MBLJ
z@H$qpsKE>*<>Zz|AM9z0B;pHH(jl(D9z&(>A(p`0O!#IF*2V<>6{Zox&RRU>cfpj+
z&i{mV&IQV<bDy8uuX{<j^|hJlSD8HMAjo6Gelv2-#xO)&%|59H)^@O|$!}eHbAv)t
zCMZ68!%d^Y?4YWvudkVNVd(8ig5LYPx&jOOeAQz=y;PUW!EBxkcM=V(=_x@=EVbU|
zBHjN4>k@_BMs}?eF!<32h#RM+Q|Xu*$>l6W1-{X}nJp8#Ihd+{r1EU1X{1tP%NxBG
zQ1;>Moa|`t(A*9^G8)^xzG3fhA{%<acF^KFM<QNoXp!+O;5f*}vu%$^du7+oJ%m|0
z2Rn7iZ^>`VMS;@YWj<nsnIT<9Nyk%SZ)4L|N8eoiyi3rlT2OoH@Gc?8gS{jBlQJk*
zW^iv;S4Bjj&F0xSXa1h}FDO)It!uZ2nD{EDr*Nk!3GO`WVo)t8rI(TU-FDgKz^FD&
zI8z8Sm^oXyeD?;F@5(}vSjb5TEc17sB>36q23FC8a?+TGvwBf3HOk0t#b{Yg8(sW2
zX5D$IiA$+T_5xw+^o!$Do$zG8i3QmYh@{Y5w1gufZgAJ~t)2LLLms>C!T?~kp=kVn
zaY?0xUlD|e!qC$E&|}4j%4TOwvc*qD-S<JS`a16uUwL+Xesqg%{&!S#T$aCY0@u5Z
zRMmNgN{)G|Llx|;D^Za032s0Ui<1rW8HkH_o7Fl%JhV2T64az?v?s}gTfa@WRWX|(
zxW?}4;K9Mi^RRcY((o<{?d+fNWz^Tt@;~)?VQ5Hv%O7ykA|uP=%J^GUq-Oh<RT4~U
zxJ{uKa)rV#gBkfLke=LwM_!AZb}+9LqDpwCR=&UEu??IM$QFLs{@A=K--A5@?lhDw
zo;Z|nHfSDd0FTbU`(yRO(BRMcb+(@INL=?RFt_!%hlQ_F;AI=en#J#5!3z?Zj(_X1
zkS9~_FthBD{W&ULAL#Gc^9U}IbehntFm3t}eb{`8-ijeb86~`_O0F6a`R+OB=NDWZ
zO;&ecJ%(P-54#h#>sI<SIOUtC%C0U(hilgBB4~wrH-<bSrHOxjSd21a(AWR|jyr1@
z{$2u)z)S@kEX}H--y1s5P9gEx@uR9Rp+wfOeFaU;s+rM@FA&ME#jv5y-e)jX%bIuE
z`stA>Ag`^(02a(Y<7_6TR(D3C?d60y7i-J0-nmc87fe#>4*q=c?%7dO){T21del)+
zXGB>UlI63irAT(q;sFu#D=kwbL<%JK#pNJdm?XYiN|{T6gD#Ogv0Ix8H-7G8zpx(_
zZ}Sj(OwVhWF58|2Z3o+c2*=fzLsLehg}5jkl<{6b&k1=6Y;rR8QY`vhM6Bu;`UZ#X
z2a02<HaAZOOrV!OqYunq1}Eps-r^jr_TJ)Jqn?~64(~}q5_Emfeg2)Ns<Nwki@)UK
zu^&k&)6CP0owO2NgonT3i%!a4`?X3bT>E2{3{L>6wP9-~SmON5+a0F7`>}(|O^_H8
z;xczfux&E0O_gP8+>R(A`flMN#Wv1aItp`GX)pRcB|0X_|ELKRm;;Tq>mJG$NPIa(
ziAwY&P0B;qppox{wbo$^hAFVEtw}!8@BjV?OqhZ~FOLGHoScMf>&Rmj)yy9fdfRKR
zACvq`Iq)mVsNKncHf~>-?C$NBG_c&qT?joUM!EX)xaOJlpE?PmEH5;jKba8z!fc87
z1vf=|u*)|sbpPFq_Yh}fkh!A{B4vQ1N)jD~m2(Ew^p#!`Z4DI{Ry@(tcS7$J`rWf8
z!4O4N?pRv7{Xh(-wRE#2z3FzH4#*e0`#%`zN4cab*BN&flo{%$$Kfdu|EQy+J6anU
z={itTd2OZ}g4JLfmb^Da41?^L&r3AVo*jeg4v==;UohM`L8mdJ0U@Ew_Ye;E)_Vb8
zlEjY+<ie?O5%R(`oyAU68=K#q=j53h4?*g2ggvG!06>M_&nx?dwk01d%Z&L7rz$`D
z`~-0{3nb8=WBddA%`X@u-kM|@!l;1j+sd1(&6!>1C$<w^f?G>cAzg=L#DM|m$jX+Q
z0D2NF9>pRZ%^U*8JR|O;Ia_OaD<%MH)`R{b8K*d||GHrFwOxo9#7C`l1OuSh8N_@W
zwcHkJ4=P^`LeG3Tn2uGnVM}VBvThF^Z`7m01qaf>&VF#ol!jZTh>C`E-F5crP<hPm
zH<*o(KX7t%-kSLtMp8AJ%psjf43@|<lWsYgevxA$8KYcOw*P&>1<0{}A+SsY$I@_E
z+Zi3OCq3v>GHHQ!+X;yKAnA0ad3!Qb$cH^mu(Meaa$@y?bZTJ=vTVadv*Go54hPrY
zSRB@>OjZ65A(oE~K_Uj3l$#R%Z2-C()d%9%UXx9ZPbuuTMGobOlf;V$cw(?0+#U4<
zwVYik<F(2RXuRMLyC6mkXlTDq@7WRoPH9J3lXuHWPtXs4pW|fN+xBlMx$j-JRzlC8
z0Y%cP=A9A010IlrY#dya7A(I|slLI-n^qUh63PySWG_;C2A-etVc27P*IgFO1~saF
zD!AWcQ9q}=yk?diDGaE2J1mpGG8!Ki7%kg^VQSaTLd3n@8ij!Zjz4ZR$lFi`T`+HH
zDp2y>9P<FvgJD+LY$3c2AI__wOouMZ1N}{b6*NSz^(g_YjhnLWv7P7}P*u^_Upp3S
zLV6$V5Y!zaH>aPUdPpEcD&%KUuNe}1w5eiptjmZn==V+yu~emDmMNL$LD4-KeiF@r
z%2aMtN~})^J^%E1-rfETO&+%18f4>$>0YN522)cI<Ru-LFGJjkHlHg=L1uD(2Rx;I
zoNg=2He>y)v)KCXlcY+l5kr_ev(-;#2YbAvAx%xc1<|IY_$j?~Ayh?H(g9NvtfF(9
zC?)$d=vhIH>pv#*koT14`T2H4+b5|UBK*E@?GQ^0@!gJ&&YNWJExpYqbv3{NZWK4Z
zx#>+V%`pM4HC$foI+zb>VDMvF@gO5x@|F}g&i;moL!vJqKBzlf?yUJ4lzuu~`QM(t
zFwD@E8kuyww8jLlu)>0NU%y+BeEIU#9|y4XKy{S2?y4%gPu)IZv({gfk}#?<q}w|5
zW)>SL>DD3~V0U)9O}!=Y(9;vN%l#RVNN7XezzK!OV#xK(1AVzStW>1ldwPt6v`ZbW
z^;N|`8Xjd%f|LX42DI;4IJhF~l6a|<3K}aT!$J;lNf~9k_v?ABoX-^*G95pe=X4y|
ziQa9Ne#JV5L`1593(H=mmJei`8iS-@f5wh=f7JQIJG}NboUj&oIVRsD`Um?9Ym4F)
zdcov`Q99JPRimTG(SM%3l^Uw_&VosgV$5_o>vH-9-W%y}HYJ7jc97#OND`0+dfM7k
zfcY9OqLOSHd@eC}3c!umPC2kArWOVlm|aS0nlqhJ%P*Ttne65_5ad7K3ub@g=38|S
zyW|hSj&zwjCSZ138Lr0lHu4$d#!3qF{j}fwUTufKpvq{7l5APJFra{w(5*DJwmf5E
zd2Tqqs#QTjm*|?5kzSHT0sn5cZ1QG>)_ilQ@e}~DqoLH~@AjBNa;=<$Wpj~`mQ>hs
zs69A;033ECjd-Q5!aZUwA{3(jI_!FbO}O6Q3y3bg?Bd7-#+!3!l<|1(BT~rw9m)Nr
zsO;AU51)Iht2DL6+CW^s`vA5A4;&>O$HToX@L}+;gZW!-m}q?SbcH3bs^7X-3m%hc
z&Ud@nrCFx>Z{%m@>d@YIqcx+GGqNeK#Af$Jm|DXalPi9vo(YSZwT9eWS6Nt}UM!Ve
z1m0roTV(EcKI}+15*9=C_7EqPErI1|3Gy&3=tCHU298csE$^29#6g1l=%YO3HWVu<
zS8VvWYQ$0mYFz8`Ko`N0)SS?g%gtm|pVNw;JO=Q)gL&*B=xatL9WlrmJL6KTZJ<<z
zd7H;#U46I9R=96@Ss8+bCSFIX0LyGf#lSetR)#L;UBE%fj9BmumshnArk|3&;k3@K
z=!(Z-<h9p{rZi1_)MosaAgThg7y{JV5dd{Ce}@`34yUG)AH|RwX}-u9$=4cJYJa-*
zeF1XQ-h70?Zu#lU5oyl+^>H$X*vg{1w}~Wxj;PRm*9wc~FN=E>Xz#bt^~U(n;f{HI
zjqKMU>VJ)Rvt^<6qVDVQ*wMQAc}DMsZqWv*nNSirPb-;v9+SS2(Tg=QoN(JzNxJK+
z;b}cN>m3FH9BoSeZa20SYf!pp6>a&PqM94c>*u(?sceg0&Xmdm4Ee>du#cSY+VRE%
zv4AUXU{2XjcZc!<CZAtpzn-E_qoy5Snp80h!8Xrlj_>}DoC72U(>Rw#3+6Xf_A|g6
zq#0ohGf^Y`bT>0tRnzRpyz9gZ3%rz>t}=UV-*{$fBZQ4@&Oj>pTqz1CqQFySm0GEw
z_!|~<Dnj;gabx9rA$Z4#+x`XB7ClpZORh`kMUl#X)U$`I-t)vqy1*lA^&<EdW6N<B
z?9DYQh3RXsy0+hG$R%~lF_m6Zwy8JnZ~pdJpb-(#693R71sXZ!tcA-Su-7IN3MZOY
z;D>#E%}~NdS2SR6_hm`BNljsWg1U&yYC_LzVo8&St58ao9+=8h@V<WKao4(MM8RVT
z%L!o@5&ChXgoEYKwOAZbbKXrsa~yf|uyQC!gp&|BnK%)w0Jzk<V=*2TH&=PSH9NtX
zIgnKpqiA;#Iqmus1ld`x72C6^M+aTw$0!zkV@=Oofn@%ZnYU{A1Z#T$h=XHD?yoT=
z0c#>E-yy-H?rI?^Dab!MnxX9Wi>2D&hIL)gjOb&+=TNgdxs-qP2gNLW(WT5mkIT<b
zdgYNHNoOmj$<s?WLOI#saLzb+kUid3d``%VRKM|r)z4&6@qfMhRi-VaMp(l>WT<{r
z^P{&j;6ic*t2tLN>QF}!XGS6lr4aF_M`Edw(fvc_Kb6f`sNk*T^jP2=sBk8>^ylC&
zoF625AOl8JO6|7lp}e0}AA{N7>eFIrO==@ii>2s4r}(Pu6#wx~R0U4-8*(-#umNN(
zR!ob>6)4s=5J_DsubLWdeY-{YpUs1CwMkAc-ZlIclhHV((@V<*-sL+>u1W>QOH0n7
zx~1C1)<E2n?x-0b(;ivNeiX&2-I>2|YEQaITu+NDm)yghn4X<@j1#fSH_zE@O92aC
z{Xwf*ZJiVaEwu-YFk#J^Ck<TV<8xXe3POb1ItB@oyNZ)Pen-)gssLv#(-b63QxrBv
zBmrQJivdv%9F8y!mrGG)57b&fa1y4z8a&320J!w=4VQb$rkcaZ5VS|C5!4JwEl&xC
zo3m&#U0r=oV@gJ9rKdHNp|6FtiV7>TN|{&W%t0deSLL)%jskT)TqN<nlWam-$nnnR
zYlLpS$_VQB(^8yqdZe<G(DUtyv!5MQ_{Sh|++49v)~1!Z6KhGMu@TZn*O?ng25Ed!
z@3uzj=HY?dr;{G@uHO*qz_F%@$IX}hwR`nRV`R$ta1UNkM*V>RH=rRGB&=1!FH5Vh
zv-5YisJt|@CHGhoj)LU=(Ut{LF!>3A!;Y~80M<fqgVVv4wt>%-rI>Da^R0Y9soQJj
z2|EWwVH(Bu`~a%5>n2)L3U1vHXgpd<<oc}24kWD6kPX-b^^S)dCJQxO4o<!+_|UcH
z`LO*Db>(*RMz#BTxMIY5I7`^mBd;-LTNarSf1_Os(NZsIC+=Lq&n6Dj+WKk#Dx<N#
zq$BEOX5(a^6vLao;Ceg2K?ezCsr{qFJ=<j8PftULuWr_PIT&J3#w}z@DvO9pJ4bj#
z!M#@XR<%YAWpKLEPEe4c=rtKL_;q8?Nq45oW&Zt%#vLZ?KEf>jklwd`=6plTZums$
zW(RfMKXB&pr;i{MbHgm=yS4ajQ(r&rZB~A~>|@)}@XoT4Eu*U|d`QT8^vxDonEhZ9
z_)!#_p$|8HbWf1^!X>Nk_DJ%pM}X0Rfzw>!x0W^6cDsPmHSg)n#;MD(TTxFeuGWQB
zo@t^MI8pDulhv;He!-S>i%uNqFm+ZZ?DLTv*E@$ET5)zNDA^F<C@@F`e%Us^qU30k
zP%!tSNnZZx)@9p`IH8~!g?8t!EOnGx1ovMvAKKo|>(eexrRqw{%wwL?i@LMXB?^X3
z`(zB|=UrVJi)vZ@Emm(6gQO)w>jhlBp4YhL2>#_=Se$MzcXzW!BS&Ap>RZ1iTaw%|
zGo5L7uC2aH(gz%xlePTit(sPRRF=ioPuWu{>Jke>z-b^fk~*{p9063hAG5au$Yy__
zq-dZW5DWhm7E!+YY)9dqNwACRc`2`<FkJ~CyV|6@A_^m<;2?ypmz_AKQ9MhNPOEa?
zWw{QDJTM3NY5_WphSq%h)%3Zqe*IY%a*{4~f-+IZxrTqvjiV4f%WZ!m_+_}P!-b4S
z%f@zm4_d_G)6^6szA%Qfv!kH<{HC47b>ECZ%qur9f4`)xHV^nWSn#Ec0iTJOwE?oz
zYP-F8`e-WK`@e`<+~4^EgN>U!NCDdUm7|m;xY|MX5TJ$`7a#=Jz~!C7zoc)0TAV}c
ztJep`z}-@P&u<26Mr&4Kl34<F6uhO8s=~@P8eE5NbM2)T48L|gJnr-AJtvhSzp#;}
zA=iCo18%~bkFIW7+B}5-k+JSEi-|7HS3PIm6X8P7Ecc*N9cKM6IY(vg30)b@xSKZZ
z0T*hg3FH9gla&46v@UFHa4n$5sK$C+EQ+A0rldITQR%3Nwqclz_(FhVkBb-uD_tUq
zYa6I(uzx;XqyOotS?=Kkk=2!0SX+-Mp+eKhu4PsmBsU5q=|75)uWd$=Orfi0SjWOu
zg?pffVM7;SXI)wFjzqX+%!8_AIhL47D+f%631kPhVC*wkA)t|{%b|aA3aFea^Gi1T
zWY|W1RZBZO`Cc9<*iFdEsYw+TLs3AaoNDP_0({0u%zrCJ@+SgOVJgTR#?t3*5fI77
z0rIXZ$nLmdm{{cPSbfB3w&e5g0<a?+-1lEGHTmzycp+qd3%53q9;$)Y`=bwSEXM}n
z$^IwfNnq5wp_|)eCUBGwAbRgsIlxDIr&ZtYk33;P$KaOMfcLLhmZU>|_@84*03J;D
ziuC#HH>Z2rHba@^fXPqreX_%5BwDdh=h^s9AK#`ni%@6hr{<aOZs#ZDZ1??qHe<Ti
z5(d(593UoN*#6kKjg4K98p`$F_4V<^Jn{bN^Hy|b_0*#Pu=_}}s5t#+8#q=vTLYLX
zvc$&dS0NS&cYWuWXFAPGfL9_fr7-!WlU6Sg$mHS8Vi$SV%@WEiA)8m;_8>M%A)7_g
zG6aG<ODJ`5k9&EkI&%It+7a+0kaxjeAtLlZlu?!=#Q&MAv3AedmQhUhHSZe#C8cX}
z_N})j`+011IW+}dIl3OoPwFj#@HMtZ?E$n}taDlY<}^i96AOU($4>HUK_O*L`GL{l
zE%&y2>5k8w9N_%b%QB(hmQx|7rft%S=?z>-haSDVnXsTw{`D@~ry>0zJNwsx%y2D)
z?RbmvV$GI;dK{6;YtW=A2$0d10#MJ{9$v0yGhU|Fdr)<aR4zhN#lfE}+|u!zDblho
zt6vpd6lneQeFmTPZiIMIPt?TZVp^sqi{ROaa;TfgUtDUfRJcx7rh<}_r}M(n!RIOt
zu|1Ii^|&Mah@BlO+O6b3Iz*hho8JrSlJ2rH%v0D8otf|{=K>#jD@1-;`s!11M<wPs
zkO}8NQ;6>moT5)c{?Uh2jRr#Ry(S=ESt56xNGlY6QYE2(U#~IjBx#F2VS7BoXKX$h
zPFUY#Lk(KAUk6{`Ja{)R*}M0sJT9W!x_#d#Wy{a(_>Z0#ML}gzd|eW9gNjgzb!oql
zpD+4mF?SFKJ2=NUxuL%nl}B50ew?#?#?`5y^M+|I8z#Udx2l?!QAaAj$`6>XCtlUc
zc|%D^rogMKabJ(wN?^mlTB<D&=64ItPtGvf+JH@~lai?r-Y#=S25~}bCRwm^`K*&c
z@FG~70t0vV4(u$)G&mWQ8LwnM<nCz_o_eV=Z<`ngUgPcT9H>b@1%x9|VjUG&W4o<|
z>wO<T`t)U6PahDH&(<RZ=<{XeyiHWRGO9>v%Cjd3qS$!%0RKM7!M~bYmYsu(ZO*4n
zj-Lu%R^qy2V(<k!8gNU?)_vw4JPkc*5Ka$x%F6^z>FyxraI*0^^Z7+PB`*Hh&fWi`
zL0IlLnNY?n^@q>8>UXPij3oMLOPx*q4!Djy9FWlup#h6T<_{L_qZ*BA225X&UMPx9
z(3VK1v4jV!WL%=Ho;=RmkW)h~bu0xiO>aAB?^l~&uq!Ktn?eUFaSafY!@y2?6w1c&
zU6>&(9|^PxU<)pe_VK^x9`-tQ)Oq1OnKz5{3XCz<=k#}?nswDH$(~(cEEuQdNNe!9
zSB#-|vXwit?H?*Y3|)xLX{YqZxrolq9E~!W_Q79jjtc9pO^8j?ZVtjYUE9S3Fqz(6
z{=Z|mEOe<5xgt!jhBlBbK5_dQgD`L3Mk<!h!fO7R0mb@QzMw*ezlmNUD;891e~TYl
zPf;=P4%m9a<FlQTH0~zxX4G}Rjum`%)y>YbFXW>7>E=#F=vn*L&YUsk`5Bri;kfI3
zgLYC)xyxVe6^ne#c-yr_5N{U=`~N(n{Qvfd_MYq;y;e<{I(Y~1eEPYMl97+Cm5-f-
zjh7wJU<vXIi1P>t@(76O3Ghn@3P}iyaq;s@@biC*n#ub=2DrN0I@t&O-v`Xiy0ZcU
Ou+)@5ib#3Oi2ntfqZSST

literal 0
HcmV?d00001

diff --git a/assets/eks-plugin-icon.svg b/assets/eks-plugin-icon.svg
new file mode 100644
index 00000000000..ad73eb4e528
--- /dev/null
+++ b/assets/eks-plugin-icon.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 522.911 587.36"><path d="M.163 287.043c0-47.658.088-95.317-.116-142.974-.025-5.636 2.074-8.918 6.735-11.594q52.595-30.2 105.066-60.61l76.047-43.909c14.972-8.652 29.86-17.455 44.964-25.868 2.473-1.378 6.81-2.456 8.6-1.224 2.187 1.5 3.549 5.572 3.61 8.565.3 14.99.03 29.99.028 44.987 0 22.829-.125 45.66.186 68.485.095 6.988-2.366 11.136-8.587 14.66-37.2 21.074-74.131 42.61-111.208 63.9-4.179 2.4-6.085 5.427-6.072 10.4q.2 75.237 0 150.474c-.013 4.959 1.74 7.911 6.013 10.364q64.707 37.146 129.227 74.62c4.788 2.78 8.716 3.13 13.8.148q52.536-30.792 105.414-61c15.965-9.161 11.3-8.648 25.754-.383 31.489 18 62.741 36.414 94.27 54.341 8.217 4.672 6.119 10.94-.174 14.546q-97.247 55.722-194.234 111.893c-10.8 6.232-21.671 12.352-32.364 18.766-3.731 2.237-6.873 2.335-10.656.139-27.054-15.7-54.2-31.247-81.3-46.874q-76.085-43.881-152.145-87.8c-5.618-3.242-11.159-6.626-16.86-9.714-4.426-2.4-6.186-5.7-6.169-10.862.161-47.825.095-95.65.095-143.475z" fill="#157cff"/><path d="M522.757 274.276v126.955c0 1.832.061 3.671-.072 5.5-.434 5.947-4.857 8.5-10.108 5.564q-20.49-11.451-40.809-23.2c-20.327-11.721-40.524-23.67-60.946-35.22-4.938-2.792-7.014-6.012-6.982-11.842.23-43.15.051-86.3.213-129.453.02-5.259-1.543-8.627-6.225-11.3-27.611-15.757-55.085-31.755-82.609-47.665-10.66-6.162-21.3-12.357-32.016-18.424-3.279-1.857-4.529-4.407-4.522-8.144.071-39.652.007-79.3.052-118.957.009-7.56 4.615-10.143 11.162-6.363q36.759 21.219 73.478 42.51 75.862 43.87 151.8 87.609c5.677 3.252 7.775 7 7.738 13.482-.249 42.983-.129 85.968-.129 128.953z" fill="#3a52dd"/><path d="M231.399 271.156c1.431-1.258 2.95-2.431 4.279-3.788 20.378-20.808 40.685-41.685 61.175-62.382a11.019 11.019 0 016.775-2.938c8.455-.347 16.933-.137 26.955-.137-5.562 5.813-10.15 10.668-14.8 15.46q-28.7 29.56-57.468 59.043c-2.668 2.721-2.783 4.52-.151 7.443q36.753 40.82 73.244 81.875c1.038 1.162 1.948 2.439 3.683 4.63-10.182 0-19.1.174-28-.16-1.6-.06-3.368-1.993-4.651-3.426q-33.488-37.371-66.864-74.84c-1.292-1.448-2.63-2.855-4.981-5.4a70.564 70.564 0 00-.866 7.219c-.037 23.488-.137 46.977.11 70.463.052 5.016-1.339 6.962-6.467 6.374a51.192 51.192 0 00-10.978-.008c-5.008.513-6.579-1.205-6.539-6.36.234-29.983.112-59.969.111-89.954 0-22.156.12-44.313-.1-66.466-.045-4.6 1.307-6.347 5.929-5.954a62.633 62.633 0 0011.481.006c5-.5 6.623 1.207 6.543 6.341-.292 18.653-.138 37.313-.118 55.97 0 2.1.224 4.191.344 6.286z" fill="#3c54df"/></svg>
\ No newline at end of file
diff --git a/scripts/sql/212_dockerslim_plugin.down.sql b/scripts/sql/212_dockerslim_plugin.down.sql
new file mode 100644
index 00000000000..0618c0332df
--- /dev/null
+++ b/scripts/sql/212_dockerslim_plugin.down.sql
@@ -0,0 +1,6 @@
+DELETE FROM plugin_stage_mapping where plugin_id=(SELECT id from plugin_metadata where name='DockerSlim v1.0.0');
+DELETE FROM plugin_step where plugin_id=(SELECT id FROM plugin_metadata WHERE name='DockerSlim v1.0.0');
+DELETE FROM plugin_step_variable where plugin_step_id=(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='DockerSlim v1.0.0' and ps."index"=1 and ps.deleted=false);
+DELETE FROM pipeline_stage_step WHERE name ='DockerSlim v1.0.0';
+DELETE FROM plugin_tag_relation WHERE plugin_id=(SELECT id FROM plugin_metadata WHERE name='DockerSlim v1.0.0');
+DELETE FROM plugin_metadata where name='DockerSlim v1.0.0';
\ No newline at end of file
diff --git a/scripts/sql/212_dockerslim_plugin.up.sql b/scripts/sql/212_dockerslim_plugin.up.sql
new file mode 100644
index 00000000000..81fbd1f6831
--- /dev/null
+++ b/scripts/sql/212_dockerslim_plugin.up.sql
@@ -0,0 +1,58 @@
+INSERT INTO plugin_metadata (id,name,description,type,icon,deleted,created_on,created_by,updated_on,updated_by)
+VALUES (nextval('id_seq_plugin_metadata'),'DockerSlim v1.0.0','This plugin is used to Slim the docker images (Currently this plugin can be used only for docker images not for docker buildx images).','PRESET','https://raw.githubusercontent.com/devtron-labs/devtron/main/assets/dockerslim-plugin-icon.png',false,'now()',1,'now()',1);
+
+INSERT INTO "plugin_tag_relation" ("id", "tag_id", "plugin_id", "created_on", "created_by", "updated_on", "updated_by") 
+VALUES (nextval('id_seq_plugin_tag_relation'), (SELECT id FROM plugin_tag WHERE name='DevSecOps'), (SELECT id FROM plugin_metadata WHERE name='DockerSlim v1.0.0'),'now()', 1, 'now()', 1);
+
+INSERT INTO plugin_stage_mapping (id,plugin_id,stage_type,created_on,created_by,updated_on,updated_by)
+VALUES (nextval('id_seq_plugin_stage_mapping'),(SELECT id from plugin_metadata where name='DockerSlim v1.0.0'), 0,'now()',1,'now()',1);
+
+INSERT INTO "plugin_pipeline_script" ("id", "script","type","deleted","created_on", "created_by", "updated_on", "updated_by")
+VALUES (
+     nextval('id_seq_plugin_pipeline_script'),
+        $$#!/bin/sh
+httpProbe=$(echo "$HTTPProbe" | tr "[:upper:]" "[:lower:]")
+includeFilePath=$IncludePathFile
+
+export tag=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.dockerImageTag)
+export repo=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.dockerRepository)
+export registry=$(echo $CI_CD_EVENT | jq --raw-output .commonWorkflowRequest.dockerRegistryURL)
+
+cd /devtroncd
+
+docker pull dslim/slim
+
+if [ "$httpProbe" == "true" ]; then
+    if [ -n "$includeFilePath" ]; then
+        docker run -i --rm -v /var/run/docker.sock:/var/run/docker.sock -v $PWD:$PWD dslim/slim build --http-probe=true --target $repo:$tag --tag $repo:$tag --continue-after=2 --include-path-file $includeFilePath
+    else
+        docker run -i --rm -v /var/run/docker.sock:/var/run/docker.sock -v $PWD:$PWD dslim/slim build --http-probe=true --target $repo:$tag --tag $repo:$tag --continue-after=2
+    fi
+elif [ -n "$includeFilePath" ]; then
+    docker run -i --rm -v /var/run/docker.sock:/var/run/docker.sock -v $PWD:$PWD dslim/slim build --http-probe=false --target $repo:$tag --tag $repo:$tag --continue-after=2 --include-path-file $includeFilePath
+else
+    docker run -i --rm -v /var/run/docker.sock:/var/run/docker.sock -v $PWD:$PWD dslim/slim build --http-probe=false --target $repo:$tag --tag $repo:$tag --continue-after=2
+fi
+
+docker push $registry/$repo:$tag
+
+# Check the exit code of the last command
+if [ $? -eq 0 ]; then
+    echo "-----------***** Success: Docker-slim images built successfully *****-----------"
+else
+    echo "-----------***** Error: Docker-slim build failed, we are pushing original image to the container registry *****-----------"
+fi$$,
+        'SHELL',
+        'f',
+        'now()',
+        1,
+        'now()',
+        1
+);
+
+INSERT INTO "plugin_step" ("id", "plugin_id","name","description","index","step_type","script_id","deleted", "created_on", "created_by", "updated_on", "updated_by")
+VALUES (nextval('id_seq_plugin_step'), (SELECT id FROM plugin_metadata WHERE name='DockerSlim v1.0.0'),'Step 1','Step 1 - DockerSlim','1','INLINE',(SELECT last_value FROM id_seq_plugin_pipeline_script),'f','now()', 1, 'now()', 1);
+
+INSERT INTO plugin_step_variable (id,plugin_step_id,name,format,description,is_exposed,allow_empty_value,default_value,value,variable_type,value_type,previous_step_index,variable_step_index,variable_step_index_in_plugin,reference_variable_name,deleted,created_on,created_by,updated_on,updated_by) 
+VALUES (nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='DockerSlim v1.0.0' and ps."index"=1 and ps.deleted=false),'HTTPProbe','BOOL','Is port expose or not in Dockerfile','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='DockerSlim v1.0.0' and ps."index"=1 and ps.deleted=false),'IncludePathFile','STRING','File path contains including path for dockerslim build flag --include-path-file','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1);
diff --git a/scripts/sql/213_eks_cluster_creation.down.sql b/scripts/sql/213_eks_cluster_creation.down.sql
new file mode 100644
index 00000000000..dc0da59670d
--- /dev/null
+++ b/scripts/sql/213_eks_cluster_creation.down.sql
@@ -0,0 +1,6 @@
+DELETE FROM plugin_stage_mapping where plugin_id=(SELECT id from plugin_metadata where name='EKS Create Cluster v1.0.0');
+DELETE FROM plugin_step where plugin_id=(SELECT id FROM plugin_metadata WHERE name='EKS Create Cluster v1.0.0');
+DELETE FROM plugin_step_variable where plugin_step_id=(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false);
+DELETE FROM pipeline_stage_step WHERE name ='EKS Create Cluster v1.0.0';
+DELETE FROM plugin_tag_relation WHERE plugin_id=(SELECT id FROM plugin_metadata WHERE name='EKS Create Cluster v1.0.0');
+DELETE FROM plugin_metadata where name='EKS Create Cluster v1.0.0';
\ No newline at end of file
diff --git a/scripts/sql/213_eks_cluster_creation.up.sql b/scripts/sql/213_eks_cluster_creation.up.sql
new file mode 100644
index 00000000000..af885a1122a
--- /dev/null
+++ b/scripts/sql/213_eks_cluster_creation.up.sql
@@ -0,0 +1,178 @@
+INSERT INTO plugin_metadata (id,name,description,type,icon,deleted,created_on,created_by,updated_on,updated_by)
+VALUES (nextval('id_seq_plugin_metadata'),'EKS Create Cluster v1.0.0','Plugin to provision a EKS cluster in AWS','PRESET','https://raw.githubusercontent.com/devtron-labs/devtron/main/assets/eks-plugin-icon.svg',false,'now()',1,'now()',1);
+
+INSERT INTO plugin_tag (id, name, deleted, created_on, created_by, updated_on, updated_by)
+SELECT
+    nextval('id_seq_plugin_tag'),
+    'AWS EKS',
+    false,
+    'now()',
+    1,
+    'now()',
+    1
+WHERE NOT EXISTS (
+    SELECT 1
+    FROM plugin_tag
+    WHERE name = 'AWS EKS'
+);
+
+INSERT INTO "plugin_tag_relation" ("id", "tag_id", "plugin_id", "created_on", "created_by", "updated_on", "updated_by") 
+VALUES (nextval('id_seq_plugin_tag_relation'), (SELECT id FROM plugin_tag WHERE name='AWS EKS'), (SELECT id FROM plugin_metadata WHERE name='EKS Create Cluster v1.0.0'),'now()', 1, 'now()', 1);
+
+INSERT INTO plugin_stage_mapping (id,plugin_id,stage_type,created_on,created_by,updated_on,updated_by)
+VALUES (nextval('id_seq_plugin_stage_mapping'),(SELECT id from plugin_metadata where name='EKS Create Cluster v1.0.0'), 0,'now()',1,'now()',1);
+
+INSERT INTO "plugin_pipeline_script" ("id", "script","type","deleted","created_on", "created_by", "updated_on", "updated_by")
+VALUES (
+     nextval('id_seq_plugin_pipeline_script'),
+        $$#!/bin/sh
+set -e
+
+ENABLE_PLUGIN=$(echo "$EnablePlugin" | tr "[:upper:]" "[:lower:]")
+AUTOMATED_NAME=$(echo "$AutomatedName" | tr "[:upper:]" "[:lower:]")
+CLUSTER_NAME="${ClusterName}"
+VERSION="${Version}"
+REGION="${Region}"
+ZONES="${Zones}"
+NODEGROUP_NAME="${NodeGroupName:-linux-nodes}"
+NODE_TYPE="${NodeType:-m5.large}"
+DESIRED_NODES="${DesiredNodes:-1}"
+MIN_NODES="${MinNodes:-0}"
+MAX_NODES="${MaxNodes:-3}"
+USE_IAM_NODE_ROLE=$(echo "$UseIAMNodeRole" | tr "[:upper:]" "[:lower:]")
+USE_CONFIG_FILE=$(echo "$UseEKSConfigFile" | tr "[:upper:]" "[:lower:]")
+CONFIG_FILE_PATH="${EKSConfigFilePath}"
+AWS_ACCESS_KEY_ID=$AWSAccessKeyId
+AWS_SECRET_ACCESS_KEY=$AWSSecretAccessKey
+
+if [ "$AUTOMATED_NAME" == "true" ]; then
+  if [ -z "$CLUSTER_NAME" ]; then
+    echo "Error: CLUSTER_NAME is empty. Exiting the script."
+    exit 1
+  fi
+
+  # Generate a random suffix for the cluster name
+  RANDOM_SUFFIX=$(head /dev/urandom | tr -dc A-Za-z0-9 | head -c 4)
+
+  # Define the regex pattern
+  PATTERN='^([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9]$'
+
+  # Check if the random suffix matches the pattern, if not, regenerate
+  while [[ ! "$RANDOM_SUFFIX" =~ $PATTERN ]]; do
+    RANDOM_SUFFIX=$(head /dev/urandom | tr -dc A-Za-z0-9 | head -c 4)
+  done
+
+  # Check if the cluster name matches the regex, if not, use a default name
+  if [[ ! "$CLUSTER_NAME" =~ $PATTERN ]]; then
+    echo "Error: CLUSTER_NAME does not match the required regex. Using a default name."
+    CLUSTER_NAME="default-devtron-cluster"
+  fi
+
+  CLUSTER_NAME="${CLUSTER_NAME}-${RANDOM_SUFFIX}"
+  echo "The random generated cluster name is ${CLUSTER_NAME}"
+fi
+
+curl --silent --location "https://github.com/weaveworks/eksctl/releases/latest/download/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp
+mv /tmp/eksctl /usr/local/bin
+
+if [ "$ENABLE_PLUGIN" == "true" ]; then
+  # Check if IAM node role is used
+  if [ "$USE_IAM_NODE_ROLE" == "true" ]; then
+    echo "Using IAM node role for AWS credentials"
+    AWS_CLI_CONFIG="/home/tekton/.aws"
+    mkdir -p "$AWS_CLI_CONFIG"
+  else
+    # Check if AWS credentials are provided
+    if [ -z "$AWSAccessKeyId" ] || [ -z "$AWSSecretAccessKey" ]; then
+      echo "Error: AWS credentials not provided. Set USE_IAM_NODE_ROLE=true or provide AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY."
+      exit 1
+    fi
+
+    echo "exporting aws credentials"
+    export AWS_ACCESS_KEY_ID="$AWSAccessKeyId"
+    export AWS_SECRET_ACCESS_KEY="$AWSSecretAccessKey"
+  fi
+
+  # Check if using EKS config file
+  if [ "$USE_CONFIG_FILE" == "true" ]; then
+    if [ -z "$CONFIG_FILE_PATH" ]; then
+      echo "Error: EKS config file path not provided. Set CONFIG_FILE_PATH when USE_CONFIG_FILE=true."
+      exit 1
+    fi
+
+    # Create EKS cluster using config file
+    echo "************ Using Eksctl config file to create the cluster ***************"
+    eksctl create cluster --config-file "/devtroncd/$CONFIG_FILE_PATH" --kubeconfig /devtroncd/kubeconfig.yaml
+
+  else
+    if [[ -z "$CLUSTER_NAME" ]]; then
+    echo "Error: ClusterName should not be empty. Exiting the script."
+    exit 1
+    fi
+    if [[ -z "$VERSION" ]]; then
+    echo "Error: Version should not be empty. Exiting the script."
+    exit 1
+    fi
+    if [[ -z "$REGION" ]]; then
+    echo "Error: Region should not be empty. Exiting the script."
+    exit 1
+    fi
+    echo "************** Creating Eksctl cluster using the parameters provided in plugin **************"
+    # Create EKS cluster using specified parameters
+    eksctl create cluster \\
+      --name "$CLUSTER_NAME" \\
+      --version "$VERSION" \\
+      --region "$REGION" \\
+      --zones "$ZONES" \\
+      --nodegroup-name "$NODEGROUP_NAME" \\
+      --node-type "$NODE_TYPE" \\
+      --nodes "$DESIRED_NODES" \\
+      --nodes-min "$MIN_NODES" \\
+      --nodes-max "$MAX_NODES" \\
+      --kubeconfig /devtroncd/kubeconfig.yaml
+  fi
+
+  # Check if the cluster creation was successful
+  if [ $? -eq 0 ]; then
+    echo "***** Successfully created EKS cluster: $CLUSTER_NAME *****"
+    export CreatedClusterName=$CLUSTER_NAME
+    # Write kubeconfig to the specified workspace
+    export EKSKubeConfigPath=/devtroncd/kubeconfig.yaml
+  else
+    echo "Error: Failed to create EKS cluster: $CLUSTER_NAME"
+    exit 1
+  fi
+else
+  echo "Error: Please enable the plugin to create plugin"
+  exit 1
+fi$$,
+        'SHELL',
+        'f',
+        'now()',
+        1,
+        'now()',
+        1
+);
+
+INSERT INTO "plugin_step" ("id", "plugin_id","name","description","index","step_type","script_id","deleted", "created_on", "created_by", "updated_on", "updated_by")
+VALUES (nextval('id_seq_plugin_step'), (SELECT id FROM plugin_metadata WHERE name='EKS Create Cluster v1.0.0'),'Step 1','Step 1 - EKS Create Cluster','1','INLINE',(SELECT last_value FROM id_seq_plugin_pipeline_script),'f','now()', 1, 'now()', 1);
+
+INSERT INTO plugin_step_variable (id,plugin_step_id,name,format,description,is_exposed,allow_empty_value,default_value,value,variable_type,value_type,previous_step_index,variable_step_index,variable_step_index_in_plugin,reference_variable_name,deleted,created_on,created_by,updated_on,updated_by) 
+VALUES (nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'EnablePlugin','BOOL','True or False to enable plugin','t','f',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'AutomatedName','BOOL','True or False to enabling Random name of the cluster creation based on the ClusterName provided','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'UseIAMNodeRole','BOOL','True or False to use IAM Node Role for EKS Cluster creation ','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'AWSAccessKeyId','STRING','AWS Access Key ID','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'AWSSecretAccessKey','STRING','AWS Secret Access KEY','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'ClusterName','STRING','Provide the Cluster Name','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'Version','STRING','Version of the EKS Cluster to create','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'Region','STRING','AWS Region for EKS Cluster','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'Zones','STRING','Availability Zone for EKS Cluster','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'NodeGroupName','STRING','NodeGroup Name for EKS Cluster','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'NodeType','STRING','EC2 instance type for NodeGroup','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'DesiredNodes','STRING','No. of Desired nodes in NodeGroup','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'MinNodes','STRING','No. of Minimum nodes in NodeGroup','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'MaxNodes','STRING','No. of Maximum nodes in NodeGroup','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'UseEKSConfigFile','BOOL','True or False to use ConfigFile for EKS Cluster creation','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'EKSConfigFilePath','STRING','Path for EKS config file','t','t',null,null,'INPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'CreatedClusterName','STRING','The EKS cluster created name','t','f',false,null,'OUTPUT','NEW',null,1,null,null,'f','now()',1,'now()',1),
+(nextval('id_seq_plugin_step_variable'),(SELECT ps.id FROM plugin_metadata p inner JOIN plugin_step ps on ps.plugin_id=p.id WHERE p.name='EKS Create Cluster v1.0.0' and ps."index"=1 and ps.deleted=false),'EKSKubeConfigPath','STRING','The Kubeconfig path of EKS','t','f',false,null,'OUTPUT','NEW',null,1,null,null,'f','now()',1,'now()',1);
\ No newline at end of file