Upstream/harbor
1
0
Fork 0
mirror of https://github.com/goharbor/harbor.git synced 2024-07-01 01:05:13 +02:00
Code Issues Projects Releases Wiki Activity
10,892 Commits 46 Branches 303 Tags 361 MiB
3db6f6b0d6
Commit Graph

10892 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Wang Yan
3db6f6b0d6
bump up go to v1.17 (#15868) 
Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-25 17:21:38 +08:00
孙世军
81dd6345ca
Enlarge index artifact folder icon (#15863) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-10-25 14:09:31 +08:00
He Weiwei
89d52ba7f4
feat: bump up trivy adater to v0.23.0 (#15861) 
Closes #14983

Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-10-25 12:44:54 +08:00
stonezdj(Daojun Zhang)
469333c97d
Merge pull request #15847 from stonezdj/2.4_add_hostname_to_tracespan_name 
(cherry-pick) Add hostname to trace span name
 2021-10-23 20:43:04 +08:00
stonezdj
174d3d6f6d Add hostname to trace span name 
Fixes #15726, unify the trace span name in all components

Signed-off-by: stonezdj <stonezdj@gmail.com>
 2021-10-23 18:13:31 +08:00
孙世军
3c4264270e
Add XAcceptVulnerabilities header when getting artifact scan overview (#15852) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-10-22 17:12:26 +08:00
He Weiwei
16ac5d922f
Add configurable timeout for Trivy scans (#15796) (#15849) 
Signed-off-by: Rolf Ahrenberg <Rolf.Ahrenberg@saunalahti.fi>

Co-authored-by: Rolf Ahrenberg <Rolf.Ahrenberg@saunalahti.fi>
 2021-10-22 16:49:49 +08:00
Steven Zou
283b7f1023
Merge pull request #15851 from heww/cherry-pick-pr-15747 
[Cherry pick]fix(scan): Add function to avoid writing creds in jobservice logs, sw…
 2021-10-22 16:42:30 +08:00
Alexis L
59fed27185 fix(scan): Add function to avoid writing creds in jobservice logs, switch to debug instead of info (#15747) 
Signed-off-by: Alexis <60alexis@gmail.com>
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-10-22 07:30:59 +00:00
Chenyu Zhang
0299976059
fix: handle codeql golang security issues (#15848) 
Signed-off-by: chlins <chenyuzh@vmware.com>

Co-authored-by: chlins <chenyuzh@vmware.com>
 2021-10-22 14:36:50 +08:00
stonezdj(Daojun Zhang)
c9e8e757eb
Update the jaeger settings in harbor.yaml.tmpl (#15846) 
agent default port to 6831

Signed-off-by: stonezdj <stonezdj@gmail.com>
 2021-10-22 13:43:58 +08:00
孙世军
87eead32d2
Fix css issues for robot and replication (#15835) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-10-22 10:09:34 +08:00
stonezdj(Daojun Zhang)
46821a81f4
Merge pull request #15831 from stonezdj/2.4_remove_noise 
(cherry-pick) Fix all issues related to the noise in the logs
 2021-10-21 20:22:21 +08:00
stonezdj
a9d574428f Fix all issues related to the noise in the logs 
Change log level to debug when required
Signed-off-by: stonezdj <stonezdj@gmail.com>

(cherry picked from commit a00a83df38)
 2021-10-21 09:40:16 +08:00
Yang Jiao
a4f8feba0c
Merge pull request #15813 from YangJiao0817/refresh-base-image-2.4-1 
Refresh base image
 2021-10-19 10:48:19 +08:00
Yang Jiao
64ea45fa16 Refresh base image 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2021-10-19 09:44:31 +08:00
Wang Yan
6014646bcb
fixes gc dry run issue (#15804) 
fixes #15332, for the dry run mode, gc job should not remove the untagged candidates.
To fix it, use the simulate untagged artifact deletion for dry-run.

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-19 07:42:54 +08:00
Shengwen YU
3f75f0db32
feat: add python testing script for stop scan job (#15779) 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Co-authored-by: Shengwen Yu <yshengwen@vmware.com>
 2021-10-18 13:13:53 +08:00
Steven Zou
22e99c78d1
Merge pull request #15777 from AllForNothing/remove-neg 
Remove negligible and unknown severities and add none severity
 2021-10-18 11:46:20 +08:00
stonezdj(Daojun Zhang)
2020bf383b
Merge pull request #15790 from stonezdj/21oct15_change_trace_name 
Change the span name to <method>_<request uri>
 2021-10-18 09:41:12 +08:00
Yurii Paneiko
be1e762b70
For some reason this script hangs on bzip2 presence checking (#15647) 
Steps to reproduce:

Clone repo from master branch
Run: make install COMPILETAG=compile_golangimage
Wait until script will check that bzip2 is installed

Signed-off-by: YuriiPaneiko <yurapaneyko@gmail.com>
 2021-10-14 20:11:14 +08:00
Shatakshi Gupta
76733d72be
fixed S1008 bugbash error (#15781) 
Signed-off-by: Shatakshi <shatakshi.gupta85@gmail.com>
 2021-10-14 20:10:48 +08:00
Soumik Majumder
eb7329a471
Fix semgrep sprintf-host-port (#15782) 
Signed-off-by: Soumik Majumder <soumikm@vmware.com>
 2021-10-14 20:10:27 +08:00
Soumik Majumder
b4c2ff7768
Fix bad and missing shebangs (#15783) 
Signed-off-by: Soumik Majumder <soumikm@vmware.com>
 2021-10-14 20:09:41 +08:00
Wang Yan
f9d1294b45
roll back the runner count (#15792) 
It takes about 1 hour to perform data for 40000 repositories per performance testing.

Roll back the runner count to 100 could speed the data preparation time.
It's safe since it only takes 100 DB connection counts at most per execution per core.

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-14 19:05:30 +08:00
He Weiwei
b390112f5a
fix: convert severity from negligible to none before saving to db (#15791) 
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-10-14 16:02:38 +08:00
stonezdj
3b2ac06639 Change the span name to <method>_<request uri> 
Use the same trace option for HTTPTransport
  fixes #15726
Signed-off-by: stonezdj <stonezdj@gmail.com>
 2021-10-14 14:33:16 +08:00
Soumik Majumder
2679b2427b
Fix semgrep use-of-weak-crypto error (#15784) 
Signed-off-by: Soumik Majumder <soumikm@vmware.com>
 2021-10-14 14:28:59 +08:00
Wenkai Yin(尹文开)
7fc22e4344
Merge pull request #15789 from wy65701436/fix-replication-db 
fix replication DB connection issue
 2021-10-14 13:52:03 +08:00
Wang Yan
729d2e6590 fix replication DB connection issue 
fixes #15736

For the current imple, the GetWorker() may hang when there is no worker available, and will not release the DB connection.
In this case, the DB connection could reach the up limit that leads to harbor core for service unavailable.

1, move GetWorker() in the goroutine, release the DB connection for API.
2, reduce the worker count per harbor-core from 1024 to 10.
3, reduce the runner count per worker to 30.

After above, the max connection per harbor-core should be 300.

Worker: To control how many replicaiton exectuions can have at most at the same time.
Runner: To control the speed to generate an jobservice replicaiton job.

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-14 11:31:33 +08:00
AllForNothing
b2775292ef Remove negligible and unknown severities and add none severity 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-10-13 16:45:16 +08:00
Shengwen YU
4d89c845d0
fix: webhook log (#15756) 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Co-authored-by: Shengwen Yu <yshengwen@vmware.com>
 2021-10-13 15:46:04 +08:00
Yang Jiao
4632e49cc0
Merge pull request #15765 from YangJiao0817/update-robot-account-case 
Update robot account permission item all list
 2021-10-13 10:53:34 +08:00
Yang Jiao
bc321a331a Update robot account permission item all list 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2021-10-13 09:46:56 +08:00
Wang Yan
5c92b2f308
bump up containerd version (#15752) 
Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-11 17:45:21 +08:00
Wenkai Yin(尹文开)
dc8477bd7a
Merge pull request #15680 from antbreton/fix/15679 
fix filename processing to support both URI and URL
 2021-10-11 17:18:23 +08:00
Yang Jiao
7b39bab0f3
Merge pull request #15738 from YangJiao0817/fix-helm-cli 
Update helm cm-push plugin
 2021-10-11 11:58:46 +08:00
Wang Yan
f57c426409
bump up jwt version (#15730) 
Upgrade the jwt to github.com/golang-jwt/jwt/v4, and it's backwards compatible with v3.x.y.

Signed-off-by: wang yan <wangyan@vmware.com>
 2021-10-08 16:09:00 +08:00
Yang Jiao
e79dd316cd Update helm cm-push plugin 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2021-10-08 15:27:44 +08:00
孙世军
96f5caa635
Add list artifact and list repo permissions to robot account (#15718) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-10-08 10:56:37 +08:00
stonezdj(Daojun Zhang)
32023891eb
Merge pull request #15675 from stonezdj/21sep22_email_nullable 
Allow empty email attribute for ldap/oidc user
 2021-10-02 10:33:38 +08:00
Wang Yan
4e984e8c6e
fix legacy robot edit issue (#15709) 
fixes #15690, for the legacy robot, update is denied.

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-01 00:41:54 +08:00
孙世军
7345021800
Fix lagecy robot edit issue (#15716) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-09-30 15:01:19 +08:00
stonezdj
06715af303 Allow empty email attribute for ldap/oidc user 
Define user.Email as sql.NullString to avoid unique constraint when email is empty in LDAP/OIDC
  Separate the common/models/User with the pkg/user/dao/User
  Fixes #10400
Signed-off-by: stonezdj <stonezdj@gmail.com>
 2021-09-30 14:35:18 +08:00
孙世军
c1169d66be
Improve routing links (#15706) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-09-30 10:25:19 +08:00
Qian Deng
18c236d3cd
Merge pull request #15674 from ninjadq/add_validation_for_tracing 
Add validation for tracing
 2021-09-29 18:13:46 +08:00
Steven Zou
93e644119d
Merge pull request #15219 from danielpacak/bump_up_trivy_adapter_to_v0.20.0 
chore(trivy): Bump up Trivy adapter from v0.19.0 to v0.20.0
 2021-09-29 09:09:52 +08:00
antbreton
db2a6fb970 fix filename processing to support both URI and URL 
Signed-off-by: antbreton <antoine.breton06@gmail.com>
 2021-09-27 16:13:21 +02:00
Qian Deng
3c23926bdc Add validation for tracing 
* add  validation of tracing in validating process

Signed-off-by: Qian Deng <dengq@vmware.com>
 2021-09-27 13:10:55 +00:00
孙世军
38e0910fc7
Auto-focus for filter component (#15672) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-09-27 18:46:27 +08:00