Skip to content

v2.0.0
Compare
Choose a tag to compare
@github-actions github-actions released this 06 Sep 13:29
· 68 commits to main since this release
v2.0.0
fd5751f

Changelog

  • df6eb32 - Added namespace-priority testing to access-policy tests
  • 48eafcd - Added namespaceMatchesNamespacesByLabel utility-function
  • c6a00cd - Egress NamespacesByLabel is in and working
  • 431a954 - First pass at outbound namespacesByLabel
  • 5947f3b - Initial push, code still needs more work
  • aa41b22 - Messing with Kuttl rules
  • 1c6e488 - Removed unused code
  • 42830cc - Reworked GetEgressService logic to prioritize namespace over namespacesByLabel - Fixed a couple of typos in comments
  • c43d51d - Updated README.md with namespacesByLabel
  • 5a267b0 @actions/artifact: Unique ARTIFACT_NAME
  • c4bf6c7 Add AccessPolicies status (#524)
  • 05b0031 Add CRD for routing on deploy (#448)
  • 1d9e8ae Add Istio to SKIPJob w/PodMonitor
  • 24d2c63 Add back source.component to events asserts (#485)
  • bc6c370 Add feature flags
  • 40dd745 Add missing annotation for skipjobs anduse service instead of application for dynamic ports (#514)
  • 6972d7a Add missing app pod label to job pods (#518)
  • 3d5eb0a Add more permissions for proxy, so frontends can run (#372)
  • a49ac2a Add nightly build
  • 5d292de Add on workflow_dispatch
  • 32d92e9 Add optional cloudsql auth proxy sidecar for applications (#456)
  • 5f4b409 Add skiperator role binding for kind
  • f23edf1 Add status diff for routing (#516)
  • f34ba24 Added annotation to test
  • eae2356 Added kartverket-intern.cloud to internal addresses
  • f7e1c20 Allow traffic to new internal server network (#405)
  • b1324b7 Better balancing by respecting generations of ReplicaSets
  • 88a06ff Bump Go version to 1.22 (#458)
  • 65ff4c5 Bump actions/download-artifact from 3 to 4
  • 35b7dab Bump actions/setup-go from 4 to 5 (#369)
  • 34fc5cc Bump chainsaw to v0.0.8
  • e085763 Bump deps
  • 8f96122 Bump deps
  • 74199e0 Bump deps
  • b3244ad Bump github.com/cert-manager/cert-manager from 1.13.1 to 1.13.2
  • ab24861 Bump github.com/cert-manager/cert-manager from 1.13.2 to 1.13.3
  • 908c476 Bump github.com/cert-manager/cert-manager from 1.13.3 to 1.14.1
  • b36cf43 Bump github.com/docker/docker
  • 0e72056 Bump github.com/google/k8s-digester from 0.1.10 to 0.1.13
  • 99a39ef Bump github.com/kyverno/chainsaw from 0.0.8 to 0.0.9
  • dffeb89 Bump github.com/kyverno/chainsaw from 0.0.9 to 0.1.1
  • bc8713a Bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring
  • e6cb798 Bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring
  • 96740d1 Bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring
  • c9bbf46 Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
  • 955b1d7 Bump golang.org/x/crypto from 0.16.0 to 0.17.0
  • f66c15a Bump istio.io/api from 1.20.1 to 1.20.2
  • e7cdb20 Bump istio.io/client-go from 1.19.1 to 1.20.0
  • 996ab0f Bump istio.io/client-go from 1.20.1 to 1.20.2
  • bf1aedd Bump istio.io/client-go to v1.21.2
  • 6b375b6 Bump k8s.io/apiextensions-apiserver from 0.29.0 to 0.29.1
  • eca76b3 Bump k8s.io/apiextensions-apiserver from 0.29.1 to 0.29.2 (#413)
  • 6721d24 Bump k8s.io/apimachinery from 0.29.0 to 0.29.1
  • 588937f Bump k8s.io/client-go from 0.28.4 to 0.29.0 (#385)
  • 5273e9f Bump k8s.io/client-go from 0.29.0 to 0.29.1
  • 53d3e9a Bump k8s.io/client-go from 0.29.1 to 0.29.2 (#410)
  • ba19f90 Bump kartverket/pharos from 0.1.4 to 0.1.5
  • bdc377c Bump kartverket/pharos from 0.1.5 to 0.2.0
  • 547ea06 Bump kyaml to v0.16.0
  • 4376e04 Bump liberator +digdirator
  • d739d1c Bump mergo to v1.0.0
  • fa29e37 Bump sigs.k8s.io/controller-runtime from 0.17.1 to 0.17.2 (#411)
  • 94936ec Bump sigs.k8s.io/controller-tools from 0.13.0 to 0.14.0
  • ab2b4aa Bump sigstore/cosign-installer from 3.1.2 to 3.2.0
  • e143e0a Bump sigstore/cosign-installer from 3.2.0 to 3.3.0
  • 29fa587 Bump sigstore/cosign-installer from 3.3.0 to 3.4.0
  • c90a8a4 Bump x/exp
  • fc122a9 Changed field name to reflect type
  • 0933066 Create CODE_OF_CONDUCT.md
  • 99b0291 Deploy skiperator to atkv1 and atgcp1
  • e14db74 Disable automatic deploy on nightly builds
  • d745d6a Drop some istio metrics by default in monitor objects (#436)
  • f247944 Fix "resources" not getting updated
  • d678ca2 Fix istioEnabled check
  • 46d65ba Fix missing security context for cloudsql proxy (#494)
  • 0205584 Fix namespaceByLabel when multiple namespaces have same label (#523)
  • 6100c8d Fix open and upcoming dependency updates
  • 4fed838 Fix review comments
  • 2cd41c5 Fix runtime panic introduced by #436 (#437)
  • 17e1b52 Fix small Prometheus API breakage
  • a01a538 Fix unintentional kubebuilder downgrade
  • cd16572 Introduce anti-affinity
  • b9ed599 Link to crds.dev for API doc
  • befe9aa Merge branch 'main' into SKIP-1225
  • 3d7ce36 Merge branch 'main' into SKIP-1225
  • cf979f5 Merge branch 'main' into dependabot/github_actions/sigstore/cosign-installer-3.2.0
  • c2ad973 Merge branch 'main' into dependabot/go_modules/github.com/cert-manager/cert-manager-1.13.3
  • 68235a3 Merge pull request #348 from kartverket/dependabot/go_modules/github.com/docker/docker-24.0.7incompatible
  • 94579e4 Merge pull request #352 from kartverket/dependabot/go_modules/github.com/cert-manager/cert-manager-1.13.2
  • bc751db Merge pull request #354 from kartverket/dependabot/go_modules/go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc-0.46.0
  • 7647cb4 Merge pull request #355 from kartverket/dependabot/github_actions/kartverket/pharos-0.1.5
  • 9013f59 Merge pull request #356 from kartverket/dependabot/github_actions/sigstore/cosign-installer-3.2.0
  • 2c1dc87 Merge pull request #357 from kartverket/dependabot/go_modules/istio.io/client-go-1.20.0
  • 38c016e Merge pull request #359 from kartverket/resources-modification-bug
  • cb0dc29 Merge pull request #360 from kartverket/SKIP-1225
  • dfbf40f Merge pull request #361 from kartverket/monitoring
  • 97d3585 Merge pull request #362 from kartverket/dependabot/go_modules/github.com/google/k8s-digester-0.1.13
  • 7bc94fa Merge pull request #364 from kartverket/dependabot/go_modules/github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring-0.70.0
  • de31d5a Merge pull request #365 from kartverket/fix-service-port
  • 63aad7d Merge pull request #366 from kartverket/bump-deps
  • 2c6f6b8 Merge pull request #367 from kartverket/disable-nightly-push
  • 45a3325 Merge pull request #370 from kartverket/dependabot/go_modules/github.com/cert-manager/cert-manager-1.13.3
  • 3160deb Merge pull request #371 from kartverket/dependabot/go_modules/github.com/kyverno/chainsaw-0.0.9
  • 2ad5dff Merge pull request #379 from kartverket/dependabot/github_actions/sigstore/cosign-installer-3.3.0
  • 2c5a4b0 Merge pull request #380 from kartverket/dependabot/github_actions/actions/download-artifact-4
  • c94df19 Merge pull request #381 from kartverket/dependabot/go_modules/github.com/kyverno/chainsaw-0.1.1
  • 6af772c Merge pull request #382 from kartverket/dependabot/go_modules/golang.org/x/crypto-0.17.0
  • 51a7328 Merge pull request #383 from kartverket/better-return-values
  • 83be8e3 Merge pull request #384 from kartverket/team-label
  • f4fe753 Merge pull request #390 from kartverket/scrape-istio-proxy-by-default
  • 7d72243 Merge pull request #391 from kartverket/dependabot/go_modules/github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring-0.71.0
  • d9f8a54 Merge pull request #392 from kartverket/dependabot/go_modules/istio.io/api-1.20.2
  • 1db7e3c Merge pull request #393 from kartverket/dependabot/go_modules/sigs.k8s.io/controller-tools-0.14.0
  • 95d7a68 Merge pull request #394 from kartverket/dependabot/go_modules/istio.io/client-go-1.20.2
  • 8e45f89 Merge pull request #395 from anderssonw/use-correct-label-skipjob-netpol
  • acb819c Merge pull request #396 from kartverket/deployments-annotation
  • 507bf57 Merge pull request #397 from kartverket/manual-deploy-to-two-sandboxes
  • 216df6b Merge pull request #398 from kartverket/dependabot/go_modules/k8s.io/apimachinery-0.29.1
  • 4a37c14 Merge pull request #399 from kartverket/dependabot/go_modules/k8s.io/client-go-0.29.1
  • 2b08dd0 Merge pull request #401 from kartverket/dependabot/go_modules/github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring-0.71.2
  • e38c7c6 Merge pull request #402 from kartverket/dependabot/go_modules/k8s.io/apiextensions-apiserver-0.29.1
  • 4a57a6d Merge pull request #403 from kartverket/dependabot/github_actions/sigstore/cosign-installer-3.4.0
  • 1f31eaf Merge pull request #404 from kartverket/dependabot/go_modules/github.com/cert-manager/cert-manager-1.14.1
  • 5239c65 Merge pull request #414 from kartverket/dependabot/github_actions/kartverket/pharos-0.2.0
  • 415aea6 Merge pull request #417 from kartverket/dependabot/go_modules/go.uber.org/zap-1.27.0
  • 35735d6 Merge pull request #420 from kartverket/add-coc
  • 16ae1a7 Merge pull request #421 from kartverket/dependabot/go_modules/github.com/cert-manager/cert-manager-1.14.4
  • 2718fa7 Merge pull request #422 from kartverket/dependabot/go_modules/github.com/kyverno/chainsaw-0.1.8
  • 0745882 Merge pull request #423 from kartverket/dependabot/go_modules/github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring-0.72.0
  • a99d3c6 Merge pull request #424 from kartverket/add-anti-affinity
  • 4a3e205 Merge pull request #425 from kartverket/dependabot/go_modules/k8s.io/client-go-0.29.3
  • 292c3b2 Merge pull request #426 from kartverket/dependabot/go_modules/github.com/kyverno/chainsaw-0.1.9
  • 6436ced Merge pull request #430 from kartverket/dependabot/github_actions/docker/login-action-3.1.0
  • 4a3925d Merge pull request #433 from kartverket/dependabot/go_modules/github.com/docker/docker-25.0.5incompatible
  • cbde424 Merge pull request #435 from kartverket/dependabot/go_modules/k8s.io/apiextensions-apiserver-0.29.3
  • 0056fc0 Merge pull request #438 from kartverket/dependabot/go_modules/sigs.k8s.io/kustomize/kyaml-0.17.0
  • 4f3d65d Merge pull request #439 from kartverket/dependabot/go_modules/github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring-0.73.0
  • d0f81f4 Merge pull request #460 from kartverket/bump-deps
  • 6bbfe23 Merge pull request #468 from kartverket/new-internal-address
  • 99c0c6a Merge pull request #471 from kartverket/dependabot/github_actions/docker/login-action-3.2.0
  • da3d3ac Merge pull request #475 from kartverket/conditional-metrics-merging
  • 13570ee Merge pull request #478 from kartverket/dependabot/github_actions/docker/build-push-action-6
  • b076da1 Merge pull request #481 from kartverket/custom-cert
  • 91b28c7 Merge pull request #486 from kartverket/bump-deps
  • 5db9aa8 Merge pull request #487 from kartverket/dependabot/go_modules/google.golang.org/grpc-1.64.1
  • 843d670 Merge pull request #500 from kartverket/alloy-netpol
  • baef590 Merge pull request #505 from kartverket/dependabot/github_actions/sigstore/cosign-installer-3.6.0
  • 618b774 Merge pull request #513 from kartverket/bump-deps
  • bb099f2 Merge remote-tracking branch 'origin/main'
  • a461672 Missing status when updating to new CRD blocks resource update (#509)
  • 5a0bb99 Move custom cert to ingresses in the format "foo.bar.com+some-cert"
  • 4819342 Moved to Chainsaw-tests, cleaned up tests a bit
  • 18c25d6 Only scrape istio-proxy
  • 7d10e6f Oppdaterer beskrivelse.yaml fra versjon 1.0 til 2.0 (#432)
  • f22a24a Oppdaterer med catalog-info.yaml til versjon 3.0 (#525)
  • 8e68a3c Oppretter sikkerhetsmappa med beskrivelse.yaml og legger til Security Champion i CODEOWNERS (#340)
  • ca15aec Path based routing (#415)
  • f041aab Refactor (#488)
  • 8bbdf06 Remove ServiceMonitor if istio is not present
  • e2b7cff Remove enabled field from cloudSqlProxy (#517)
  • 443aef5 Revert SKIPJob fix
  • cfe07f6 ShouldReconcile function shouldn't reset the original object (#480)
  • b2828d2 Switch to Pod Topology Spread Constraints
  • 94b8935 Update README.md
  • d482103 Update assert.yaml
  • fd5751f Update goreleaser config
  • 2072325 Update tests
  • e94cba4 Updated RBAC role
  • 8822e51 Use different istio reference in makefile for istio version (#386)
  • 18ad190 Workflow should fail if tests fail (#373)
  • 9eb7d08 [SKIP-1153] - refactor from kuttl to chainsaw (#358)
  • 81f07db [SKIP-1176] Add ID-porten and Maskinporten clients to Application controller (#256)
  • 8c02f75 [SKIP-1185] - add missing securityContext values in deployment (#368)
  • b65ae73 [SKIP-1418] - fix gcp-auth configmap reconciliation (#479)
  • c25c925 added annotation for pod template
  • 27e241f added fix to skip-job
  • 94b9448 added grafana alloy to default_deny and app netpol
  • 77a8402 added monitoring for skip-job
  • 7bfcbd7 added tests
  • 87e6810 application: add 'team' to spec
  • 285d5c8 application: add extra negative test case
  • f716b3f build(deps): bump docker/build-push-action from 5 to 6
  • d97ea1b build(deps): bump docker/login-action from 3.0.0 to 3.1.0
  • fd9d759 build(deps): bump docker/login-action from 3.1.0 to 3.2.0
  • 54c2f8a build(deps): bump docker/login-action from 3.2.0 to 3.3.0 (#495)
  • c27f484 build(deps): bump github.com/cert-manager/cert-manager
  • eac1581 build(deps): bump github.com/cert-manager/cert-manager (#416)
  • feca42d build(deps): bump github.com/cert-manager/cert-manager (#462)
  • e1679e3 build(deps): bump github.com/cert-manager/cert-manager (#476)
  • 69cb689 build(deps): bump github.com/docker/docker
  • df53ded build(deps): bump github.com/docker/docker (#499)
  • f95b2d8 build(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 (#450)
  • c90a396 build(deps): bump github.com/kyverno/chainsaw from 0.1.3 to 0.1.8
  • bb90d6c build(deps): bump github.com/kyverno/chainsaw from 0.1.8 to 0.1.9
  • e4d6990 build(deps): bump github.com/kyverno/chainsaw from 0.1.9 to 0.2.2 (#469)
  • 2c28e9a build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring
  • ad76fe9 build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring
  • 6a1b581 build(deps): bump github.com/prometheus-operator/prometheus-operator/pkg/apis/monitoring
  • 4e32f1e build(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0
  • defef3a build(deps): bump google.golang.org/grpc from 1.64.0 to 1.64.1
  • 6c0b49c build(deps): bump goreleaser/goreleaser-action from 5 to 6 (#472)
  • 932a5a4 build(deps): bump istio.io/api from 1.20.2 to 1.21.2
  • 6fc5518 build(deps): bump istio.io/client-go from 1.21.2 to 1.22.1 (#474)
  • b121c1a build(deps): bump istio.io/client-go from 1.22.2 to 1.22.3 (#492)
  • 582acf6 build(deps): bump k8s.io/api from 0.29.2 to 0.29.3 (#429)
  • 68bfb98 build(deps): bump k8s.io/apiextensions-apiserver from 0.29.2 to 0.29.3
  • b119fb6 build(deps): bump k8s.io/client-go from 0.29.2 to 0.29.3
  • a7cddae build(deps): bump k8s.io/client-go from 0.30.2 to 0.30.3 (#491)
  • 0fb36c6 build(deps): bump kartverket/pharos from 0.2.0 to 0.2.1
  • 194796c build(deps): bump sigs.k8s.io/controller-runtime from 0.17.2 to 0.18.2
  • 0814a98 build(deps): bump sigs.k8s.io/kustomize/kyaml from 0.16.0 to 0.17.0
  • 8e5bfbf build(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0
  • 1f885aa build(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0
  • 63b2f24 ci: disable daily build at midnight
  • 5ff205e custom-cert: introduce helper function
  • d26d2d1 custom-cert: typed assert on TLS
  • bc781b8 deployment: don't modify selector when using team labels
  • 8bda320 digester: fix api incompatibiltiy
  • 9eee18f disable metrics merging when not using custom metrics
  • 829790c enable custom cert for app
  • 88f77b2 fix bug where access policy would stop adding ports if app doesn't ex… (#526)
  • 98d90cd fix job pod label (#522)
  • 28198d1 fix: Autosync loop because we update access policy with ports (#510)
  • 1634a54 gcp: fix compatibility with new controller-runtime
  • b42dfb1 generate new Application CRD
  • 86ec054 istio: don't depend on beta
  • 21c01bf make istio netpol test more reliable (#515)
  • 12e7b4e more tests!
  • fb7c532 refactor host datatype
  • 63729cc refactor: extract reconcile return functions
  • f8b35f3 routing: support custom certificate
  • c69da44 sandbox-deploy: pull before pushing
  • 0063e0d service: add tests
  • bcbe193 service: allow both TCP and UDP
  • f21d60b service: expose appProtocol
  • 23a3f0f service: refactor default port handling
  • a852c74 tests
  • 91ec782 tests: bump to K8s 1.29.0 following bump of api+client-go
  • 6497b18 thinking..
  • ed25b6b typocorrection
  • c773abb update name of netpol podSelector in test
  • 9d57caf updated crds descriptions
  • eed9ee2 updated readme
  • fd35e16 use correct labelselector for skipjob pods in netpol
Assets 28
Loading