Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Some code fixes and getting proper restricted kubeconfig structs #2

Open
wants to merge 18 commits into
base: main
Choose a base branch
from
+3,479 −3,266
Open

Some code fixes and getting proper restricted kubeconfig structs #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
c9637f8
Hardening codeql workflow
radoslawc Jun 26, 2024
7bb9418
SBOM and license scanning information and monitor fixes (#775)
radoslawc Jul 1, 2024
0bee469
Merge pull request #776 from radoslawc/harden_codeql_workflow
radoslawc Jul 1, 2024
d98bcef
Update porch dependencies to nephio porch modules (#781)
efiacor Jul 29, 2024
aa967c0
Fix metrics address formatting (#785)
efiacor Aug 2, 2024
d039133
adding vjayaramrh to the list (#799)
vjayaramrh Aug 15, 2024
8bb1efd
Improve approval reconciler timings (#797)
efiacor Aug 22, 2024
f58266c
Add docker build/push postsubmit jobs (#782)
efiacor Aug 27, 2024
6917498
De duplication logic to NF Deploy Fn Param Ref (#494) (#525)
aakashchan Sep 10, 2024
7e451cb
Add new "always" approval policy (#806)
efiacor Sep 13, 2024
5c8d08f
Upgrade porch module to v1.3.1 (#807)
efiacor Sep 16, 2024
7098236
Fix broken docker build (#810)
efiacor Sep 18, 2024
4b974b3
Always run all tests (#811)
radoslawc Sep 18, 2024
643bc99
Bootstrapping bundle init
PrimalPimmy Jun 3, 2024
93d004d
Removing vault, need to refactor cluster client
PrimalPimmy Sep 19, 2024
8b0e927
Removing more vault elements
PrimalPimmy Sep 20, 2024
60bb4c8
Go mod changes
PrimalPimmy Sep 20, 2024
b867add
[Testing commit] Changes to addr port handling
PrimalPimmy Sep 23, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 19 additions & 0 deletions .clomonitor.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
# CLOMonitor metadata file

# Checks exemptions
exemptions:
- check: artifacthub_badge
reason: "Nephio artifacts are hosted on DockerHub"

- check: signed_releases
reason: >
"All Nephio release images are cryptographically signed during build with cosign.
Images and signatures are hosted in DockerHub. Naming convention is that signature
filename is an image sha256 digest and the file extension is .sig
Scorecard check is currently limited to repositories hosted on GitHub,
and does not support other source hosting repositories."

licenseScanning:
# In Nephio every PR is being tested for license compliance. Those include Fossology scan, Scancode-toolkit scan and
# Lichen scan of produced binaries. The results of those scans are available at Prow site:
url: https://prow.nephio.io/
13 changes: 10 additions & 3 deletions .github/workflows/codeql.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,9 @@ on:
- cron: '28 7 * * 0'
workflow_dispatch:

permissions:
contents: read

jobs:
analyze:
name: Analyze (${{ matrix.language }})
Expand All @@ -27,10 +30,14 @@ jobs:
- language: go
build-mode: autobuild
steps:
- name: Harden Runner
uses: step-security/harden-runner@17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6 # v2.8.1
with:
egress-policy: audit
- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
uses: github/codeql-action/init@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
with:
languages: ${{ matrix.language }}
build-mode: ${{ matrix.build-mode }}
Expand All @@ -39,7 +46,7 @@ jobs:
make docker-build

- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
uses: github/codeql-action/analyze@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
with:
category: "/language:${{matrix.language}}"

Loading