Commit Graph

11754 Commits

Author SHA1 Message Date
stonezdj(Daojun Zhang)
54a889ecb2 Create index in vulnerability_record table (#18949)
add index for better query performance

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-07-24 04:16:09 +00:00
Shijun Sun
fbff3f2a12 Add Security Hub UI (#18942)
1.Fixes #18819
2.Add Security Hub page as a new tab for Interrogation Services

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-24 04:16:09 +00:00
Shijun Sun
c051e85748 Update the regex for policy name and the tooltip message (#18947)
1. Fixes task 6 for #18091

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-24 04:16:09 +00:00
yminer
758726c98d bump up golang to 1.20.6 on main
Signed-off-by: yminer <yminer@vmware.com>
2023-07-19 11:44:38 +00:00
Shijun Sun
79e8c396bf
Add Notation UI for deployment security (#18952)
1. for #18927

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-19 18:22:11 +08:00
Chlins Zhang
970bdab936
fix: correct the operator in the webhook payload (#18906)
Fix the incorrect or meaningless operator in the webhook payload.

Fixes: #18438

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-07-19 15:40:29 +08:00
stonezdj(Daojun Zhang)
d4aa9b13c4
Add vulnerability search API (#18924)
use q.Query to pass all query conditions

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-07-19 10:17:14 +08:00
stonezdj(Daojun Zhang)
82ee5295ea
Log warning message when current user is freeze (#18937)
Signed-off-by: stonezdj <daojunz@vmware.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-07-18 15:34:28 +08:00
Wang Yan
d745ad9175
fix gc schedule issue (#18934)
fixes #18881

Save workers settings into the metadata of the garbage collection schedule

Signed-off-by: wang yan <wangyan@vmware.com>
2023-07-17 15:28:21 +08:00
Wang Yan
ff2b99d711
enable notary v2 policy checker (#18927)
add notary v2 pull policy, when it enables, the artifact cannot be pull without the notation signature.

Signed-off-by: wang yan <wangyan@vmware.com>
2023-07-14 13:35:56 +08:00
Wang Yan
5cce621471
add notation support (#18909)
Accept and recognize the signature of notation client

Signed-off-by: wang yan <wangyan@vmware.com>
2023-07-13 11:18:34 +08:00
Kane
06c4c1c076
update icons (#18767)
Signed-off-by: vndroid <diracsvip@gmail.com>
Co-authored-by: Vadim Bauer <vb@container-registry.com>
2023-07-12 17:35:14 +03:00
stonezdj(Daojun Zhang)
93e428d0d2
Add security hub summary API (#18872)
include WithCVE, WithArtifact option

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-07-12 19:18:08 +08:00
Yang Jiao
90259f3c80
Add CVE Allowlist expires Test Cases (#18921)
Fix #18920

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-12 17:32:40 +08:00
Shengwen YU
df4dc3c00b
fix: add password/secret length check to be <= 128 (#18916)
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-07-12 17:04:50 +08:00
Yang Jiao
c707106ef7
Add OIDC filter group testcase (#18914)
Fix #17950

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-11 15:37:15 +08:00
Chlins Zhang
98f592f94f
chore: upgrade golang-migrate to v4.16.2 (#18879)
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-07-11 10:21:12 +08:00
Yang Jiao
cbb211e670
Add CloudEvents format webhook testcase (#18908)
Fix #18616

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-10 15:05:56 +08:00
Chlins Zhang
78799ccb2f
perf: introduce update quota by redis (#18871)
Introduce the quota update provider, improve the performance of pushing
artifacts to same project with high concurrency by implementing
optimistic lock in redis. By default the function is disabled, open it
by set env 'QUOTA_UPDATE_PROVIDER=Redis' for the core container.

Fixes: #18440

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-07-10 13:24:37 +08:00
Yang Jiao
adf80e921e
Add replication by chunk testcase (#18904)
Fix #17951

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-07 15:18:22 +08:00
Yang Jiao
fb52fdb3e0
Refactor the keyword in the testcase (#18898)
Fix #17952

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-06 13:47:00 +08:00
Bin Liu
c8120d5712
API: update ScannerRegistration.properties.url format (#18799)
The format of ScannerRegistration.properties.url should be
`uri` but not `url`.

Fixes: #18798

Signed-off-by: bin liu <liubin0329@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-07-05 17:57:06 +08:00
Shijun Sun
1efe944a8d
Correct the hidden property for clrDgHideableColumn (#18890)
1.Fixes #18870

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-05 14:31:35 +08:00
Wang Yan
dbaae9e64e
support OCI-Subject header (#18885)
fixes #18865
the response header OCI-Subject to indicate to the client that the registry processed the request's subject.

Signed-off-by: wang yan <wangyan@vmware.com>
Co-authored-by: System Administrator <root@wangyanCQFQY.vmware.com>
2023-07-05 11:25:19 +08:00
Shijun Sun
1d2624eefc
Add worker parameter for GC (#18882)
1. Related back-end PR #18855

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-04 10:36:39 +08:00
Shijun Sun
ef96c729c0
Add costomized banner message UI (#18827)
1.Fixes #18719
2.Add Banner Message item to configuration
3.Add banner_message property to systeminfo API

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-03 15:58:37 +08:00
Shijun Sun
8fe561865d
Add unit test for hidden columns (#18873)
1. Fixes #18870

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-03 10:58:14 +08:00
stonezdj(Daojun Zhang)
d84b1d07d2
Update table scan_report and extract cvss_v3_score from vendor attribute (#18854)
For better performance when query cve information, add summary information to scan_report
    Extract cve_score from vendor attribute in vulnerability_record
    SQL migrate script for the update

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-06-29 17:30:50 +08:00
Wang Yan
7435c8c5ab
add multiple deletion of GC (#18855)
User can specify the workers when to issue an GC execution, the maxium count of workers is 5.

Signed-off-by: wang yan <wangyan@vmware.com>
2023-06-29 16:22:18 +08:00
Chlins Zhang
02a1c417d4
refactor: migrate the redis command keys to scan (#18825)
Refine the cache interface, migrate the Keys to Scan, change the redis
underlying keys command to scan.

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-06-29 11:28:19 +08:00
Shijun Sun
d36ca805b4
Add new client Podman to the pull command (#18857)
1.Fixes #18832

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-27 11:12:41 +08:00
Bin Liu
1d6c02f52d
jobservice: update readme (#18849)
To reflect the newest job interface, and the missing parts of
DB job service logger.

Signed-off-by: bin liu <liubin0329@gmail.com>
2023-06-27 09:13:47 +08:00
Orlix
46f1fb0fd3
Update ADOPTERS.md
Signed-off-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
2023-06-20 16:51:39 +03:00
Orlix
c13e7e6fa6
Add Dynatrace as adopter and fix master to main (#18823)
Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
2023-06-19 16:21:59 +08:00
Bin Liu
4035f438fb
jobservice: add DB to job logger config (#18821)
jobservice: add DB to job logger config in readme

Job logger support file, db and stdout, the comment should
include the type of DB as well as file and stdout.

Signed-off-by: bin liu <liubin0329@gmail.com>
2023-06-19 14:19:21 +08:00
Shijun Sun
b822952537
Update the text for the oidc cli secret tooltip (#18814)
Update the text for oidc cli secret tooltip
1. Update the text for all the i18n files

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-16 12:29:58 +08:00
Shijun Sun
ca94a23a74
Add Podman push command to the UI (#18810)
1. Fixes #18781

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-13 10:45:05 +08:00
dependabot[bot]
31a46a16cc
chore(deps): bump mheap/github-action-required-labels from 4 to 5 (#18805)
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 4 to 5.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v4...v5)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-06-12 17:22:47 +08:00
Shijun Sun
fc9c68a6fc
Add Details column for gc history (#18797)
1. Related #18779
2. Show how many blobs and manifest have been deleted and how much space has been freed up

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-12 15:41:50 +08:00
Chlins Zhang
c08c7c52a0
fix: optimize the mechanism of quota refresh (#18795)
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-06-08 14:19:06 +08:00
rongfu.leng
8251fd2dec
【UT】add unit test for collector system info (#18717)
add unit test for system collector test

Signed-off-by: lengrongfu <1275177125@qq.com>
2023-06-08 10:06:09 +08:00
Shijun Sun
2f51daf707
Add a tooltip for slack notification (#18787)
1.Fixes #18507
2.Remind the users of Slack's rate limits

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-07 16:14:36 +08:00
Yang Jiao
61d74b9da1
Add podman pull & push testcase (#18790)
Fix #18788

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-06-06 10:45:28 +08:00
Mac Chaffee
6e2b79a67a
Update/improve grafana dashboard (#16661)
* Update/improve grafana dashboard

Signed-off-by: Mac Chaffee <machaffe@renci.org>
2023-06-05 18:49:47 +08:00
rongfu.leng
8fe578e7ab
feat: Optimize quota checking when pushing images (#17392)
Signed-off-by: lengrongfu <1275177125@qq.com>
2023-06-05 17:19:55 +08:00
Chlins Zhang
fbeeaa7537
fix: add checkpoint when enqueue scan tasks for scan all (#18680)
Fix the scanAll cannot be stopped in case of large number of artifacts,
add the checkpoint before submit scan tasks, mark the scanAll stopped
flag in the redis.

Fixes: #18044

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-06-05 15:12:54 +08:00
sll552
9d28d1f43f
Remove wrong format for boolean value in api definition (#18783)
type: boolean cannot be used with a format of int32

Signed-off-by: sll552 <sll552@users.noreply.github.com>
2023-06-02 20:30:03 +08:00
Wang Yan
680c78d368
add more details in gc history (#18779)
Show more infors in the gc history, like the sweep size and how many blobs and manifests were removed by GC.

Signed-off-by: Wang Yan <wangyan@vmware.com>
2023-06-02 17:33:09 +08:00
Yang Jiao
97c1fdcd8e
Add Referrers API testcase (#18775)
Fix #18617

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-06-01 16:34:40 +08:00
Chlins Zhang
a98711c0fc
fix: clean up scan executions and reports after deleting artifact (#18693)
Cleanup the associated resources(scan executions and scan reports) after
deletion of artifact.

Fixes: #18634

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-05-31 14:54:52 +08:00