Upstream/harbor
1
0
Fork 0
mirror of https://github.com/goharbor/harbor.git synced 2024-07-01 01:05:13 +02:00
Code Issues Projects Releases Wiki Activity
10,952 Commits 46 Branches 303 Tags 361 MiB
d91706b5fd
Commit Graph

10952 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Shengwen YU
d91706b5fd
[Cherry-Pick] fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0 (#17240) 
[Cherry-Pick] fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0 (#17072)

fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2022-07-26 09:40:44 +08:00
Yang Jiao
b3aad8238f
Bump up version to v2.4.3 (#17236) 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-07-25 17:42:52 +08:00
Shengwen YU
219e930db7
chore(deps): bump Trivy adapter from v0.26.0 to v0.28.0 (#16729) (#16835) 
Trivy replaced the --version flag with version subcommand.

Resolves: #16554
Resolves: #16555

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>

Co-authored-by: Daniel Pacak <pacak.daniel@gmail.com>
 2022-05-11 10:28:09 +08:00
Chenyu Zhang
d1daed2d8a
Merge pull request #16603 from chlins/release-2.4.0/fix-project-creation-validation 
[cherry-pick] fix: validate project metadata public value
 2022-03-30 13:44:17 +08:00
chlins
3eaa62726e fix: validate project metadata public value 
Signed-off-by: chlins <chenyuzh@vmware.com>
 2022-03-29 15:18:25 +08:00
Yang Jiao
44ae875e33
Merge pull request #16590 from YangJiao0817/add-install-dateutil-modulev2.4 
Add python-dateutil module in api e2e image
 2022-03-25 18:11:20 +08:00
Yang Jiao
48008490a8 Add python-dateutil module in api e2e image 
Because swagger_client adds dependency on python-dateutil module

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-03-25 08:01:29 +00:00
Yang Jiao
d7b331fb67
Merge pull request #16573 from YangJiao0817/update-setup-gcloud-2.4 
[cherry-pick]Modify setup-gcloud from master to v0
 2022-03-23 15:27:08 +08:00
Yang Jiao
15b4bea0f3 Modify setup-gcloud from master to v0 
Adjust it because upstream made it, For more information, please see: https://github.com/google-github-actions/setup-gcloud/issues/539

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-03-23 06:29:43 +00:00
Yang Jiao
ef2e2e568e
Merge pull request #16520 from YangJiao0817/refresh-base2.4-3.25 
Refresh base images
 2022-03-15 11:21:34 +08:00
Yang Jiao
c39e73326e Refresh base images 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-03-15 01:46:04 +00:00
Wang Yan
db900b56e2
add transaction for artifact delete (#16512) 
Add transaction for artifact deletion, given API has the transaction when to call artifact controller but other object may not, for example jobservice job.
Here, force add the tx to ensure all the things can be rolled back.

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2022-03-11 21:42:06 +08:00
Yang Jiao
00350cef3e
Merge pull request #16500 from YangJiao0817/update_trivy_testcase_2.4 
[cherry-pick]Update trivy test case
 2022-03-10 16:05:47 +08:00
Yang Jiao
149ba509cb Update trivy test case 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-03-10 02:38:26 +00:00
Yang Jiao
7e0f6176b6
Merge pull request #16484 from YangJiao0817/trivy-upgrade2v0.24.2-2.4 
[cherry-pick]Bump TRIVYVERSION to v0.24.2 and bump TRIVYADAPTERVERSION to v0.26.0
 2022-03-08 16:13:00 +08:00
Yang Jiao
99d247c03e Bump TRIVYVERSION to v0.24.2 and bump TRIVYADAPTERVERSION to v0.26.0 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-03-08 05:51:22 +00:00
stonezdj(Daojun Zhang)
13d2c9acab
Merge pull request #16447 from stonezdj/2.4_trace_login_failure 
(cherry-pick) Add IP and agent in trace for failed login
 2022-03-03 10:27:30 +08:00
stonezdj
9d5dc012aa Add IP and agent in trace for failed login 
Fixes #16423

Signed-off-by: stonezdj <stonezdj@gmail.com>
 2022-03-02 15:41:45 +08:00
MinerYang
a5393468de
bump up Go version to 1.17.7 for release-2.4.0 (#16417) 
Signed-off-by: yminer <yminer@vmmware.com>

Co-authored-by: yminer <yminer@vmmware.com>
 2022-02-25 17:24:53 +08:00
Yang Jiao
2b7d267269
Merge pull request #16407 from YangJiao0817/refresh-base224 
Refresh base images
 2022-02-24 12:16:39 +08:00
Yang Jiao
7c2fa19ffc Refresh base images 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-02-24 03:13:29 +00:00
Yang Jiao
ffe06492ce
Merge pull request #16395 from YangJiao0817/remove-print 
Remove print in python test case
 2022-02-21 13:54:16 +08:00
Chenyu Zhang
f6e5048c60
Merge pull request #16383 from chlins/release-2.4/codeql-alerts 
[cherry-pick] fix go codeql alerts
 2022-02-17 16:12:14 +08:00
Yang Jiao
f0267923fd Remove print in python test case 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-02-17 07:23:30 +00:00
chlins
f85e9736c6 fix: trim linebreaks for log parameters 
Signed-off-by: chlins <chenyuzh@vmware.com>
 2022-02-17 14:44:32 +08:00
chlins
5222a4af70 fix: fix codeql alerts 
Signed-off-by: chlins <chenyuzh@vmware.com>
 2022-02-17 14:44:11 +08:00
Yang Jiao
7b7b51be3c
Merge pull request #16358 from YangJiao0817/refresh-base-images2.4-214 
Refresh base images
 2022-02-14 14:03:37 +08:00
Yang Jiao
f00dae0da2 Refresh base images 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-02-14 01:28:11 +00:00
Shengwen YU
529300f15e
feat: add failure-tolerance for gc (#16344) 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Co-authored-by: Shengwen Yu <yshengwen@vmware.com>
 2022-02-11 12:04:15 +08:00
孙世军
5061c7ef18
Modify CVSS3 column for cve datagrid (#16299) 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2022-01-28 11:46:39 +08:00
Yang Jiao
527595a2ee
Merge pull request #16305 from YangJiao0817/specify-pg-version-13in2.4 
[cherry-pick]Specify postgresql version to 13
 2022-01-27 17:41:23 +08:00
Yang Jiao
e3bd7c8a7e Specify postgresql version to 13 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-01-27 08:26:20 +00:00
Yang Jiao
f0ae8a7e6e
Merge pull request #16281 from YangJiao0817/dump-version-to-2.4.2 
Bump up version to 2.4.2
 2022-01-25 14:22:31 +08:00
Yang Jiao
803464024f Bump up version to 2.4.2 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-01-25 13:07:09 +08:00
He Weiwei
4ec1d07c6f
Remove old version scan reports of trivy (#16262) 
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2022-01-25 11:10:04 +08:00
stonezdj(Daojun Zhang)
210921cd81
Merge pull request #16268 from stonezdj/2.4_duplicate_ldap_groupname 
(cherry-pick) Group members lose access to push or see projects on Harbor
 2022-01-25 10:16:34 +08:00
stonezdj
234bb0e35e Group members lose access to push or see projects on Harbor 
Handle the case if there is duplicate user group name when onboard ldap user group
   Continue to attach groups when it fail on one item
   Fixes #16220

Signed-off-by: stonezdj <stonezdj@gmail.com>
 2022-01-24 13:22:01 +08:00
Shengwen YU
7d39146bcd
Merge pull request #16258 from zyyw/release-2.4.0 
(cherry-pick) feat: bump TRIVYVERSION to v0.22.0 and bump TRIVYADAPTERVERSION to v0.25.0
 2022-01-21 18:22:32 +08:00
Shengwen Yu
c9ad611fce feat: bump TRIVYVERSION to v0.22.0 and bump TRIVYADAPTERVERSION to v0.25.0 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2022-01-21 17:05:02 +08:00
Yang Jiao
259b1248c3
Merge pull request #16212 from YangJiao0817/specify-pgsqlversion13-2.4 
[cherry-pick]Specify postgresql version to 13
 2022-01-14 17:47:30 +08:00
Yang Jiao
63dc0eefc2 Specify postgresql version to 13 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-01-14 16:22:47 +08:00
Yang Jiao
c4b06d7959
Merge pull request #16091 from AllForNothing/release-2.4.0 
Fix unescaped url issue
 2021-12-16 12:00:44 +08:00
AllForNothing
644413af28 Fix unescaped url issue 
Signed-off-by: AllForNothing <sshijun@vmware.com>
 2021-12-16 11:10:18 +08:00
Wang Yan
2e6650a9f1
add pull update control env (#16063) 
These variables are temporary solution for issue: https://github.com/goharbor/harbor/issues/16039
When user disable the pull count/time/audit log, it will decrease the database access, especially in large concurrency pull scenarios.

1, PULL_TIME_UPDATE_DISABLE : The flag to indicate if pull time is disable for pull request.
2, PULL_COUNT_UPDATE_DISABLE : The flag to indicate if pull count is disable for pull request.
3, pull audit log will not create on disabling pull time.

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-12-16 11:03:53 +08:00
Yang Jiao
678d579a96
Merge pull request #16118 from YangJiao0817/dump-version-to-2.4.1 
Bump up version to 2.4.1
 2021-12-15 16:11:45 +08:00
He Weiwei
0ff5dddd0b
add scan report v1.1 to default X-Accept-Vulnerabilities (#16119) 
Closes #16085

Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-12-15 16:08:23 +08:00
Yang Jiao
511c7ec784 Bump up version to 2.4.1 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2021-12-15 15:02:04 +08:00
Chenyu Zhang
d406cb47f7
Merge pull request #16127 from chlins/cp-2.4/codeql-log-injection 
(CHERRY-PICK) fix: resolve the codeql alerts
 2021-12-15 14:58:05 +08:00
chlins
2c6845d0b4 fix: resolve the codeql alerts 
Signed-off-by: chlins <chenyuzh@vmware.com>
 2021-12-15 13:51:48 +08:00
Yang Jiao
c74305a823
Merge pull request #16109 from YangJiao0817/refresh-base-2.4-1210 
Refresh base image
 2021-12-10 15:23:41 +08:00