Shengwen YU
d91706b5fd
[Cherry-Pick] fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0 ( #17240 )
...
[Cherry-Pick] fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0 (#17072 )
fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2022-07-26 09:40:44 +08:00
Yang Jiao
b3aad8238f
Bump up version to v2.4.3 ( #17236 )
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-07-25 17:42:52 +08:00
Shengwen YU
219e930db7
chore(deps): bump Trivy adapter from v0.26.0 to v0.28.0 ( #16729 ) ( #16835 )
...
Trivy replaced the --version flag with version subcommand.
Resolves : #16554
Resolves : #16555
Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
Co-authored-by: Daniel Pacak <pacak.daniel@gmail.com>
2022-05-11 10:28:09 +08:00
Chenyu Zhang
d1daed2d8a
Merge pull request #16603 from chlins/release-2.4.0/fix-project-creation-validation
...
[cherry-pick] fix: validate project metadata public value
2022-03-30 13:44:17 +08:00
chlins
3eaa62726e
fix: validate project metadata public value
...
Signed-off-by: chlins <chenyuzh@vmware.com>
2022-03-29 15:18:25 +08:00
Yang Jiao
44ae875e33
Merge pull request #16590 from YangJiao0817/add-install-dateutil-modulev2.4
...
Add python-dateutil module in api e2e image
2022-03-25 18:11:20 +08:00
Yang Jiao
48008490a8
Add python-dateutil module in api e2e image
...
Because swagger_client adds dependency on python-dateutil module
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-03-25 08:01:29 +00:00
Yang Jiao
d7b331fb67
Merge pull request #16573 from YangJiao0817/update-setup-gcloud-2.4
...
[cherry-pick]Modify setup-gcloud from master to v0
2022-03-23 15:27:08 +08:00
Yang Jiao
15b4bea0f3
Modify setup-gcloud from master to v0
...
Adjust it because upstream made it, For more information, please see: https://github.com/google-github-actions/setup-gcloud/issues/539
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-03-23 06:29:43 +00:00
Yang Jiao
ef2e2e568e
Merge pull request #16520 from YangJiao0817/refresh-base2.4-3.25
...
Refresh base images
2022-03-15 11:21:34 +08:00
Yang Jiao
c39e73326e
Refresh base images
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-03-15 01:46:04 +00:00
Wang Yan
db900b56e2
add transaction for artifact delete ( #16512 )
...
Add transaction for artifact deletion, given API has the transaction when to call artifact controller but other object may not, for example jobservice job.
Here, force add the tx to ensure all the things can be rolled back.
Signed-off-by: Wang Yan <wangyan@vmware.com>
2022-03-11 21:42:06 +08:00
Yang Jiao
00350cef3e
Merge pull request #16500 from YangJiao0817/update_trivy_testcase_2.4
...
[cherry-pick]Update trivy test case
2022-03-10 16:05:47 +08:00
Yang Jiao
149ba509cb
Update trivy test case
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-03-10 02:38:26 +00:00
Yang Jiao
7e0f6176b6
Merge pull request #16484 from YangJiao0817/trivy-upgrade2v0.24.2-2.4
...
[cherry-pick]Bump TRIVYVERSION to v0.24.2 and bump TRIVYADAPTERVERSION to v0.26.0
2022-03-08 16:13:00 +08:00
Yang Jiao
99d247c03e
Bump TRIVYVERSION to v0.24.2 and bump TRIVYADAPTERVERSION to v0.26.0
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-03-08 05:51:22 +00:00
stonezdj(Daojun Zhang)
13d2c9acab
Merge pull request #16447 from stonezdj/2.4_trace_login_failure
...
(cherry-pick) Add IP and agent in trace for failed login
2022-03-03 10:27:30 +08:00
stonezdj
9d5dc012aa
Add IP and agent in trace for failed login
...
Fixes #16423
Signed-off-by: stonezdj <stonezdj@gmail.com>
2022-03-02 15:41:45 +08:00
MinerYang
a5393468de
bump up Go version to 1.17.7 for release-2.4.0 ( #16417 )
...
Signed-off-by: yminer <yminer@vmmware.com>
Co-authored-by: yminer <yminer@vmmware.com>
2022-02-25 17:24:53 +08:00
Yang Jiao
2b7d267269
Merge pull request #16407 from YangJiao0817/refresh-base224
...
Refresh base images
2022-02-24 12:16:39 +08:00
Yang Jiao
7c2fa19ffc
Refresh base images
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-02-24 03:13:29 +00:00
Yang Jiao
ffe06492ce
Merge pull request #16395 from YangJiao0817/remove-print
...
Remove print in python test case
2022-02-21 13:54:16 +08:00
Chenyu Zhang
f6e5048c60
Merge pull request #16383 from chlins/release-2.4/codeql-alerts
...
[cherry-pick] fix go codeql alerts
2022-02-17 16:12:14 +08:00
Yang Jiao
f0267923fd
Remove print in python test case
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-02-17 07:23:30 +00:00
chlins
f85e9736c6
fix: trim linebreaks for log parameters
...
Signed-off-by: chlins <chenyuzh@vmware.com>
2022-02-17 14:44:32 +08:00
chlins
5222a4af70
fix: fix codeql alerts
...
Signed-off-by: chlins <chenyuzh@vmware.com>
2022-02-17 14:44:11 +08:00
Yang Jiao
7b7b51be3c
Merge pull request #16358 from YangJiao0817/refresh-base-images2.4-214
...
Refresh base images
2022-02-14 14:03:37 +08:00
Yang Jiao
f00dae0da2
Refresh base images
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-02-14 01:28:11 +00:00
Shengwen YU
529300f15e
feat: add failure-tolerance for gc ( #16344 )
...
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
Co-authored-by: Shengwen Yu <yshengwen@vmware.com>
2022-02-11 12:04:15 +08:00
孙世军
5061c7ef18
Modify CVSS3 column for cve datagrid ( #16299 )
...
Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-01-28 11:46:39 +08:00
Yang Jiao
527595a2ee
Merge pull request #16305 from YangJiao0817/specify-pg-version-13in2.4
...
[cherry-pick]Specify postgresql version to 13
2022-01-27 17:41:23 +08:00
Yang Jiao
e3bd7c8a7e
Specify postgresql version to 13
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-01-27 08:26:20 +00:00
Yang Jiao
f0ae8a7e6e
Merge pull request #16281 from YangJiao0817/dump-version-to-2.4.2
...
Bump up version to 2.4.2
2022-01-25 14:22:31 +08:00
Yang Jiao
803464024f
Bump up version to 2.4.2
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-01-25 13:07:09 +08:00
He Weiwei
4ec1d07c6f
Remove old version scan reports of trivy ( #16262 )
...
Signed-off-by: He Weiwei <hweiwei@vmware.com>
2022-01-25 11:10:04 +08:00
stonezdj(Daojun Zhang)
210921cd81
Merge pull request #16268 from stonezdj/2.4_duplicate_ldap_groupname
...
(cherry-pick) Group members lose access to push or see projects on Harbor
2022-01-25 10:16:34 +08:00
stonezdj
234bb0e35e
Group members lose access to push or see projects on Harbor
...
Handle the case if there is duplicate user group name when onboard ldap user group
Continue to attach groups when it fail on one item
Fixes #16220
Signed-off-by: stonezdj <stonezdj@gmail.com>
2022-01-24 13:22:01 +08:00
Shengwen YU
7d39146bcd
Merge pull request #16258 from zyyw/release-2.4.0
...
(cherry-pick) feat: bump TRIVYVERSION to v0.22.0 and bump TRIVYADAPTERVERSION to v0.25.0
2022-01-21 18:22:32 +08:00
Shengwen Yu
c9ad611fce
feat: bump TRIVYVERSION to v0.22.0 and bump TRIVYADAPTERVERSION to v0.25.0
...
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2022-01-21 17:05:02 +08:00
Yang Jiao
259b1248c3
Merge pull request #16212 from YangJiao0817/specify-pgsqlversion13-2.4
...
[cherry-pick]Specify postgresql version to 13
2022-01-14 17:47:30 +08:00
Yang Jiao
63dc0eefc2
Specify postgresql version to 13
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-01-14 16:22:47 +08:00
Yang Jiao
c4b06d7959
Merge pull request #16091 from AllForNothing/release-2.4.0
...
Fix unescaped url issue
2021-12-16 12:00:44 +08:00
AllForNothing
644413af28
Fix unescaped url issue
...
Signed-off-by: AllForNothing <sshijun@vmware.com>
2021-12-16 11:10:18 +08:00
Wang Yan
2e6650a9f1
add pull update control env ( #16063 )
...
These variables are temporary solution for issue: https://github.com/goharbor/harbor/issues/16039
When user disable the pull count/time/audit log, it will decrease the database access, especially in large concurrency pull scenarios.
1, PULL_TIME_UPDATE_DISABLE : The flag to indicate if pull time is disable for pull request.
2, PULL_COUNT_UPDATE_DISABLE : The flag to indicate if pull count is disable for pull request.
3, pull audit log will not create on disabling pull time.
Signed-off-by: Wang Yan <wangyan@vmware.com>
2021-12-16 11:03:53 +08:00
Yang Jiao
678d579a96
Merge pull request #16118 from YangJiao0817/dump-version-to-2.4.1
...
Bump up version to 2.4.1
2021-12-15 16:11:45 +08:00
He Weiwei
0ff5dddd0b
add scan report v1.1 to default X-Accept-Vulnerabilities ( #16119 )
...
Closes #16085
Signed-off-by: He Weiwei <hweiwei@vmware.com>
2021-12-15 16:08:23 +08:00
Yang Jiao
511c7ec784
Bump up version to 2.4.1
...
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2021-12-15 15:02:04 +08:00
Chenyu Zhang
d406cb47f7
Merge pull request #16127 from chlins/cp-2.4/codeql-log-injection
...
(CHERRY-PICK) fix: resolve the codeql alerts
2021-12-15 14:58:05 +08:00
chlins
2c6845d0b4
fix: resolve the codeql alerts
...
Signed-off-by: chlins <chenyuzh@vmware.com>
2021-12-15 13:51:48 +08:00
Yang Jiao
c74305a823
Merge pull request #16109 from YangJiao0817/refresh-base-2.4-1210
...
Refresh base image
2021-12-10 15:23:41 +08:00