stonezdj(Daojun Zhang)
93e428d0d2
Add security hub summary API ( #18872 )
...
include WithCVE, WithArtifact option
Signed-off-by: stonezdj <daojunz@vmware.com>
2023-07-12 19:18:08 +08:00
Yang Jiao
90259f3c80
Add CVE Allowlist expires Test Cases ( #18921 )
...
Fix #18920
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-12 17:32:40 +08:00
Shengwen YU
df4dc3c00b
fix: add password/secret length check to be <= 128 ( #18916 )
...
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-07-12 17:04:50 +08:00
Yang Jiao
c707106ef7
Add OIDC filter group testcase ( #18914 )
...
Fix #17950
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-11 15:37:15 +08:00
Chlins Zhang
98f592f94f
chore: upgrade golang-migrate to v4.16.2 ( #18879 )
...
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-07-11 10:21:12 +08:00
Yang Jiao
cbb211e670
Add CloudEvents format webhook testcase ( #18908 )
...
Fix #18616
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-10 15:05:56 +08:00
Chlins Zhang
78799ccb2f
perf: introduce update quota by redis ( #18871 )
...
Introduce the quota update provider, improve the performance of pushing
artifacts to same project with high concurrency by implementing
optimistic lock in redis. By default the function is disabled, open it
by set env 'QUOTA_UPDATE_PROVIDER=Redis' for the core container.
Fixes : #18440
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-07-10 13:24:37 +08:00
Yang Jiao
adf80e921e
Add replication by chunk testcase ( #18904 )
...
Fix #17951
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-07 15:18:22 +08:00
Yang Jiao
fb52fdb3e0
Refactor the keyword in the testcase ( #18898 )
...
Fix #17952
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-07-06 13:47:00 +08:00
Bin Liu
c8120d5712
API: update ScannerRegistration.properties.url format ( #18799 )
...
The format of ScannerRegistration.properties.url should be
`uri` but not `url`.
Fixes : #18798
Signed-off-by: bin liu <liubin0329@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-07-05 17:57:06 +08:00
Shijun Sun
1efe944a8d
Correct the hidden property for clrDgHideableColumn ( #18890 )
...
1.Fixes #18870
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-05 14:31:35 +08:00
Wang Yan
dbaae9e64e
support OCI-Subject header ( #18885 )
...
fixes #18865
the response header OCI-Subject to indicate to the client that the registry processed the request's subject.
Signed-off-by: wang yan <wangyan@vmware.com>
Co-authored-by: System Administrator <root@wangyanCQFQY.vmware.com>
2023-07-05 11:25:19 +08:00
Shijun Sun
1d2624eefc
Add worker parameter for GC ( #18882 )
...
1. Related back-end PR #18855
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-04 10:36:39 +08:00
Shijun Sun
ef96c729c0
Add costomized banner message UI ( #18827 )
...
1.Fixes #18719
2.Add Banner Message item to configuration
3.Add banner_message property to systeminfo API
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-03 15:58:37 +08:00
Shijun Sun
8fe561865d
Add unit test for hidden columns ( #18873 )
...
1. Fixes #18870
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-07-03 10:58:14 +08:00
stonezdj(Daojun Zhang)
d84b1d07d2
Update table scan_report and extract cvss_v3_score from vendor attribute ( #18854 )
...
For better performance when query cve information, add summary information to scan_report
Extract cve_score from vendor attribute in vulnerability_record
SQL migrate script for the update
Signed-off-by: stonezdj <daojunz@vmware.com>
2023-06-29 17:30:50 +08:00
Wang Yan
7435c8c5ab
add multiple deletion of GC ( #18855 )
...
User can specify the workers when to issue an GC execution, the maxium count of workers is 5.
Signed-off-by: wang yan <wangyan@vmware.com>
2023-06-29 16:22:18 +08:00
Chlins Zhang
02a1c417d4
refactor: migrate the redis command keys to scan ( #18825 )
...
Refine the cache interface, migrate the Keys to Scan, change the redis
underlying keys command to scan.
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-06-29 11:28:19 +08:00
Shijun Sun
d36ca805b4
Add new client Podman to the pull command ( #18857 )
...
1.Fixes #18832
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-27 11:12:41 +08:00
Bin Liu
1d6c02f52d
jobservice: update readme ( #18849 )
...
To reflect the newest job interface, and the missing parts of
DB job service logger.
Signed-off-by: bin liu <liubin0329@gmail.com>
2023-06-27 09:13:47 +08:00
Orlix
46f1fb0fd3
Update ADOPTERS.md
...
Signed-off-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
2023-06-20 16:51:39 +03:00
Orlix
c13e7e6fa6
Add Dynatrace as adopter and fix master to main ( #18823 )
...
Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
2023-06-19 16:21:59 +08:00
Bin Liu
4035f438fb
jobservice: add DB to job logger config ( #18821 )
...
jobservice: add DB to job logger config in readme
Job logger support file, db and stdout, the comment should
include the type of DB as well as file and stdout.
Signed-off-by: bin liu <liubin0329@gmail.com>
2023-06-19 14:19:21 +08:00
Shijun Sun
b822952537
Update the text for the oidc cli secret tooltip ( #18814 )
...
Update the text for oidc cli secret tooltip
1. Update the text for all the i18n files
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-16 12:29:58 +08:00
Shijun Sun
ca94a23a74
Add Podman push command to the UI ( #18810 )
...
1. Fixes #18781
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-13 10:45:05 +08:00
dependabot[bot]
31a46a16cc
chore(deps): bump mheap/github-action-required-labels from 4 to 5 ( #18805 )
...
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels ) from 4 to 5.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases )
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-06-12 17:22:47 +08:00
Shijun Sun
fc9c68a6fc
Add Details column for gc history ( #18797 )
...
1. Related #18779
2. Show how many blobs and manifest have been deleted and how much space has been freed up
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-12 15:41:50 +08:00
Chlins Zhang
c08c7c52a0
fix: optimize the mechanism of quota refresh ( #18795 )
...
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-06-08 14:19:06 +08:00
rongfu.leng
8251fd2dec
【UT】add unit test for collector system info ( #18717 )
...
add unit test for system collector test
Signed-off-by: lengrongfu <1275177125@qq.com>
2023-06-08 10:06:09 +08:00
Shijun Sun
2f51daf707
Add a tooltip for slack notification ( #18787 )
...
1.Fixes #18507
2.Remind the users of Slack's rate limits
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-06-07 16:14:36 +08:00
Yang Jiao
61d74b9da1
Add podman pull & push testcase ( #18790 )
...
Fix #18788
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-06-06 10:45:28 +08:00
Mac Chaffee
6e2b79a67a
Update/improve grafana dashboard ( #16661 )
...
* Update/improve grafana dashboard
Signed-off-by: Mac Chaffee <machaffe@renci.org>
2023-06-05 18:49:47 +08:00
rongfu.leng
8fe578e7ab
feat: Optimize quota checking when pushing images ( #17392 )
...
Signed-off-by: lengrongfu <1275177125@qq.com>
2023-06-05 17:19:55 +08:00
Chlins Zhang
fbeeaa7537
fix: add checkpoint when enqueue scan tasks for scan all ( #18680 )
...
Fix the scanAll cannot be stopped in case of large number of artifacts,
add the checkpoint before submit scan tasks, mark the scanAll stopped
flag in the redis.
Fixes : #18044
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-06-05 15:12:54 +08:00
sll552
9d28d1f43f
Remove wrong format for boolean value in api definition ( #18783 )
...
type: boolean cannot be used with a format of int32
Signed-off-by: sll552 <sll552@users.noreply.github.com>
2023-06-02 20:30:03 +08:00
Wang Yan
680c78d368
add more details in gc history ( #18779 )
...
Show more infors in the gc history, like the sweep size and how many blobs and manifests were removed by GC.
Signed-off-by: Wang Yan <wangyan@vmware.com>
2023-06-02 17:33:09 +08:00
Yang Jiao
97c1fdcd8e
Add Referrers API testcase ( #18775 )
...
Fix #18617
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-06-01 16:34:40 +08:00
Chlins Zhang
a98711c0fc
fix: clean up scan executions and reports after deleting artifact ( #18693 )
...
Cleanup the associated resources(scan executions and scan reports) after
deletion of artifact.
Fixes : #18634
Signed-off-by: chlins <chenyuzh@vmware.com>
2023-05-31 14:54:52 +08:00
cui fliter
e19ec9623b
Fix: fix function name in comments ( #18726 )
...
fix function name in comments
Signed-off-by: cui fliter <imcusg@gmail.com>
2023-05-31 10:26:19 +08:00
orblazer
b021dbd2d6
fix invalid access action ( #18188 )
...
Signed-off-by: orblazer <orblazer.minecraft@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-05-30 17:49:01 +08:00
Wang Yan
5c42bc10ec
remove the legacy migration ( #18754 )
...
Delete the legacy migration and artifact abstration code for v2.0
Signed-off-by: Wang Yan <wangyan@vmware.com>
2023-05-30 15:17:24 +08:00
guangwu
b7b0e43a21
fix: import optimization ( #18727 )
...
Signed-off-by: guoguangwu <guoguangwu@magic-shield.com>
2023-05-30 13:24:08 +08:00
MinerYang
14192dfb06
add strong_ssl_ciphers for nginx https jinja template ( #18748 )
...
Signed-off-by: yminer <yminer@vmware.com>
2023-05-29 21:57:15 +08:00
lishaokai1995
04833d2daf
Fix syntax errors in comments ( #18746 )
...
Signed-off-by: lishaokai1995 <lishaokai1995@126.com>
2023-05-29 17:31:08 +08:00
rongfu.leng
4652d752b6
【optimization】Use URL.Redacted method repleace redacted ( #18716 )
...
use URL.Redacted method replease redacted
Signed-off-by: lengrongfu <1275177125@qq.com>
2023-05-29 16:37:51 +08:00
stonezdj(Daojun Zhang)
1b1af4a14c
Return error when proxy cache get too many request error(429) ( #18728 )
...
Add 429 too many request error in http error
Fixes #18707
Signed-off-by: stonezdj <stonezdj@gmail.com>
2023-05-29 13:33:46 +08:00
Yang Jiao
210186f479
Update e2e engine image ( #18747 )
...
1. Update containerd version to 1.7.1
2. Update docker compose version to 2.18.1
3. Update helm version to 3.12.0
4. Update ORAS version to 1.0.0
5. Update CNAB version to 0.4.0
6. Update imgpkg version to 0.36.2
7. Update cosign version to 2.0.2
8. Update docker version to 24.0.2
9. Update chromedriver version to 114.0.5735.16
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-05-29 11:55:14 +08:00
Stephan Hohn
4f3393e615
http2 enabled and ciphers changed to get an A+ rating instead of B fr… ( #16990 )
...
* Make strong cipher cfg optional
Signed-off-by: Stephan Hohn <stephan.hohn@tech11.com>
---------
Signed-off-by: Stephan Hohn <stephan.hohn@tech11.com>
Signed-off-by: MinerYang <yminer@vmware.com>
Co-authored-by: Stephan Hohn <stephan.hohn@tech11.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
Co-authored-by: MinerYang <yminer@vmware.com>
2023-05-29 10:37:57 +08:00
Shijun Sun
11d6bb4437
Add a text to explain the time window for GC ( #18735 )
...
1.Fixes #18692
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-05-26 18:32:19 +02:00
Wang Yan
06aa87a72a
set tag pull time for proxy cache ( #18731 )
...
fixes #18708
to set the pull time of tag for the first time cache the artifact.
Signed-off-by: Wang Yan <wangyan@vmware.com>
2023-05-26 13:08:37 +08:00