fix: upgrade trivy version to v0.35.0 and trivy-adapter version to v0.30.3
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
Fix setup gcloud error
ubuntu-latest was upgraded from ubuntu-20.04 to ubuntu-22.04, the python version of ubuntu-22.04 is 3.10, but gcloud does not support python 3.10, so ubuntu is fixed to version 20.04
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
feat: support customize registry http client timeout
Support override the registry http client timeout from env `REGISTRY_HTTP_CLIENT_TIMEOUT` (in minutes), the timeout is 30 minutes by default.
Signed-off-by: chlins <chenyuzh@vmware.com>
fix: add human friendly message when export cve job failure
Add human friendly when export CVE in the condition of empty CSV file,
because this file will be stored as system artifact and pushed to
distribution, but it will leads to error when push empty blob to S3
storage driver.
Signed-off-by: chlins <chenyuzh@vmware.com>
feat: introduce the copy by chunk for replication
1. Add sql migration to alter replication policy table
2. Implement the PullBlobChunk and PushBlobChunk for the underlying v2 registry client
3. Update image transfer logic to support copy by chunk
4. Update the replication policy API handler
Signed-off-by: chlins <chenyuzh@vmware.com>
Add scan data export API test case
1. Add export scan data API test case
2. Add get scan data export execution list test case
3. Add get scan data export execution test case
4. Add download scan data test case
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
fix: handle the break change for parse external sentinel redis url
Handle the ParseSentinelURL to resolve an incompatible modification that does not recognize the default redis database.
Closes: #17483
Signed-off-by: chlins <chenyuzh@vmware.com>
Signed-off-by: chlins <chenyuzh@vmware.com>
* Add audit log and log rotation test cases
1. Add audit log test case
2. Add log rotation test case
3. Add log rotation schedule test case
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
* Refresh base images
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Update portal-base and nginx-base Dockerfile.base
Installing nginx 1.22 creates the nginx group and nginx user, so instead
of creating them again, modify them.
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
fix: validate the existence of project for export cve api
Validate the existence of the project for export CVE API handler, return
not found error if the project is not exist.
Closes: #17430
Signed-off-by: chlins <chenyuzh@vmware.com>
fix: correct description for export cve project parameter
Correct the description for the project parameter of export CVE API in
the swagger.
Closes: #17429
Signed-off-by: chlins <chenyuzh@vmware.com>
Update replication and trivy testcases
1 Update replication filter_label_xpath because of this PR #17267 updated xpath
2 Update the Manual Scan All test case, because Scan All will affect other testcases if it is not finished running
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
fix: validate export cve request params
1. Validate export cve request params in the API handler
2. Trim space for request in the scan export job
Closes: #17326
Signed-off-by: chlins <chenyuzh@vmware.com>
