Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: propagate psa checks results #5719

Merged
merged 4 commits into from
Dec 20, 2022
Merged

feat: propagate psa checks results #5719

merged 4 commits into from
Dec 20, 2022

Conversation

eddycharly
Copy link
Member

@eddycharly eddycharly commented Dec 19, 2022
edited

Signed-off-by: Charles-Edouard Brétéché charles.edouard@nirmata.com

Explanation

This PR propagates psa checks results.

Results will be added in reports properties:

   policy: psa
    properties:
      baseline/latest/capabilities_baseline: container "kindnet-cni" must not include
        "NET_ADMIN", "NET_RAW" in securityContext.capabilities.add
      baseline/latest/hostNamespaces: hostNetwork=true
      baseline/latest/hostPathVolumes: volumes "cni-cfg", "xtables-lock", "lib-modules"

@eddycharly
feat: propagate psa checks results
4d311e2 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
@eddycharly eddycharly added this to the Kyverno Release 1.9.0 milestone Dec 19, 2022
@codecov
Copy link

codecov bot commented Dec 19, 2022
edited

Codecov Report

Merging #5719 (cd43f74) into main (41fd4fb) will decrease coverage by 0.01%.
The diff coverage is 0.00%.

@@            Coverage Diff             @@
##             main    #5719      +/-   ##
==========================================
- Coverage   34.64%   34.62%   -0.02%     
==========================================
  Files         190      190              
  Lines       21071    21080       +9     
==========================================
  Hits         7300     7300              
- Misses      12961    12970       +9     
  Partials      810      810
Impacted Files Coverage Δ
pkg/engine/response/response.go 0.00% <ø> (ø)
pkg/engine/validation.go 61.16% <0.00%> (-0.97%) ⬇️

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

realshuting
realshuting previously approved these changes Dec 19, 2022
View reviewed changes
@eddycharly
add to report
17ec746 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
@eddycharly
Copy link
Member Author

@chipzoller @realshuting shall we merge this and adjust as necessary ?

@realshuting
Copy link
Member

@chipzoller @realshuting shall we merge this and adjust as necessary ?

Sure sounds good.

@realshuting realshuting enabled auto-merge (squash) December 20, 2022 05:28
@realshuting realshuting merged commit 54b7b65 into kyverno:main Dec 20, 2022
MdSahil-oss pushed a commit to MdSahil-oss/kyverno that referenced this pull request Dec 29, 2022
@eddycharly @realshuting @MdSahil-oss
feat: propagate psa checks results (kyverno#5719)
d75cdb7 
* feat: propagate psa checks results

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* add to report

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Md Sahil <Mohdssahil1@gmail.com>
MdSahil-oss pushed a commit to MdSahil-oss/kyverno that referenced this pull request Jan 11, 2023
@eddycharly @realshuting @MdSahil-oss
feat: propagate psa checks results (kyverno#5719)
88d4a63 
* feat: propagate psa checks results

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* add to report

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: MdSahil-oss <Mohdssahil1@gmail.com>
MdSahil-oss pushed a commit to MdSahil-oss/kyverno that referenced this pull request Jan 11, 2023
@eddycharly @realshuting @MdSahil-oss
feat: propagate psa checks results (kyverno#5719)
f3394a0 
* feat: propagate psa checks results

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* add to report

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: MdSahil-oss <Mohdssahil1@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@realshuting realshuting realshuting approved these changes

@prateekpandey14 prateekpandey14 Awaiting requested review from prateekpandey14

@chipzoller chipzoller Awaiting requested review from chipzoller

Assignees
No one assigned
Labels
milestone 1.9.0
Projects
None yet
Milestone
Kyverno Release 1.9.0
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@eddycharly @realshuting