Tags: open-policy-agent/frameworks
Tags
perf: Remove `with` statement to avoid deepcopying data.inventory (#252) Signed-off-by: Max Smythe <[email protected]> Signed-off-by: Max Smythe <[email protected]>
chore: bump k8s.io/client-go from 0.24.4 to 0.24.5 in /constraint (#247) Bumps [k8s.io/client-go](https://github.com/kubernetes/client-go) from 0.24.4 to 0.24.5. - [Release notes](https://github.com/kubernetes/client-go/releases) - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.24.4...v0.24.5) --- updated-dependencies: - dependency-name: k8s.io/client-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Max Smythe <[email protected]>
feat: TLS support for External Data Providers (#226) * feat: TLS support for External Data Providers Signed-off-by: GitHub <[email protected]> * Address PR comments Signed-off-by: GitHub <[email protected]> * nolint:gosec Signed-off-by: GitHub <[email protected]> * Address PR comments Signed-off-by: GitHub <[email protected]> * Add a flag to enable external data client auth Signed-off-by: GitHub <[email protected]> * Address PR comments Signed-off-by: GitHub <[email protected]> * Use sigs.k8s.io/controller-runtime/pkg/certwatcher Signed-off-by: GitHub <[email protected]> * Address PR comments Signed-off-by: GitHub <[email protected]>
Cherry pick empty data cache fix into release 0.5 (#224) * Make sure that the Rego hook is well-behaved with no data cache (#222) Fixes open-policy-agent/gatekeeper#2026 Signed-off-by: Max Smythe <[email protected]> * Upgrade linter Signed-off-by: Max Smythe <[email protected]> * Upgrade workflows Signed-off-by: Max Smythe <[email protected]>
Upgrade opa to v0.39.0 (#207) * build: Upgrade OPA Signed-off-by: Will Beason <[email protected]> Signed-off-by: Will Beason <[email protected]> * Upgrade k8s to v0,23.5 Signed-off-by: Will Beason <[email protected]> * Upgrade controller-runtime to v0.11.2 Signed-off-by: Will Beason <[email protected]> * Remove unnecessary golang.org/x/net dep Signed-off-by: Will Beason <[email protected]> * Add explanation for otel replacements Signed-off-by: Will Beason <[email protected]>
Test Local Driver (#145) Add unit tests for local driver. Increases code coverage for the driver by 18%. * Test local driver Signed-off-by: Will Beason <[email protected]> * Continue testing local driver Signed-off-by: Will Beason <[email protected]> * Finish Local Driver unit tests Signed-off-by: Will Beason <[email protected]> * Revert unintentional changes Signed-off-by: Will Beason <[email protected]> * Register external_data builtin Signed-off-by: Will Beason <[email protected]> * Continue reverting unintentional changes Signed-off-by: Will Beason <[email protected]> * Minor refactorings Signed-off-by: Will Beason <[email protected]> * Make arg names consistent Signed-off-by: Will Beason <[email protected]> * Resolve nits Signed-off-by: Will Beason <[email protected]> * Re-add tracing Signed-off-by: Will Beason <[email protected]> * Resolve merge conflicts Signed-off-by: Will Beason <[email protected]> * Continue resolving merge conflicts Signed-off-by: Will Beason <[email protected]>
Add ConstraintTemplate v1 (#121) We recently upgraded Constraint Framework to produce v1 CRDs when creating Constraint kind CRDs. This was in preparation for the release of k8s 1.22, which removes the `v1beta1` CRD version. See open-policy-agent/gatekeeper#550 for more info. As v1beta1 ConstraintTemplate did _not_ required any user-entered schema information to be structural, transformation logic was implemented to "structuralize" the user-inputted schema information as needed. The new v1 ConstraintTemplate version purposefully does _no_ transformation, as it is meant to put the ConstraintTemplate creation experience in line with that of a v1 CRDs. Any schema information added by the user is expected to be structural. If non-structural schema info is added, an error should be returned. Signed-off-by: juliankatz <[email protected]>
PreviousNext