Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Trivy as Vulnerability plugin #228

Merged
merged 105 commits into from
Oct 31, 2023
Merged

Add Trivy as Vulnerability plugin #228

merged 105 commits into from
Oct 31, 2023

Conversation

matheusfm
Copy link
Contributor

@matheusfm matheusfm commented Aug 31, 2023
edited
Loading

Description

Add Trivy as Vulnerability plugin.

How has this been tested?

These changes can be tested by installing Zora version 0.7.0-rc7

helm repo update undistro
helm upgrade --install zora undistro/zora \
  -n zora-system \
  --create-namespace \
  --wait \
  --set clusterName=$(kubectl config current-context) \
  --version 0.7.0-rc7

Then one Cluster and two ClusterScans will already be available in zora-system namespace.

kubectl get cluster,scan -n zora-system

Checklist

  • I have labeled this PR with the relevant Type labels
  • I have documented my code (if applicable)
  • My changes are covered by tests

@matheusfm
remove kubeconfig flags from plugins cmd
f745556
@matheusfm
add default-container annotation on plugin pods
6979f03
@matheusfm
set KUBECONFIG env only if the Cluster has kubeconfigKeyRef
4e2651e
@matheusfm
add view permissions to zora-plugins ClusterRole
621c812
@matheusfm
remove kubeconfigRef from Cluster sample
ba7fb30
@matheusfm
feat: add agent mode flag in helm chart
37227d5
@matheusfm
fix: operator should have the same permissions as the plugins
c1c5701
@matheusfm
update plugins role
18a1c1c
@matheusfm
set runAsNonRoot in container level
4af04d6
@matheusfm
create vulnerabilityreport crd
7359ab8
@matheusfm
create namespace on make install
35e45af
@matheusfm
create trivy plugin sample
521b513
@matheusfm
Merge branch 'main' into feat/trivy-plugin
981cad8 
# Conflicts:
#	charts/zora/README.md
#	charts/zora/templates/plugins/rbac.yaml
#	charts/zora/values.yaml
#	config/rbac/zora_plugins_role.yaml
#	pkg/plugins/cronjob.go
@matheusfm
chore: update trivy plugin
b8940fe
@matheusfm
chore: apply trivy plugin on make install
6afbb68
@matheusfm
feat: set security context on worker container
ffc13d0
@matheusfm
feat: set security context on init container
5c8ffa5
@matheusfm
feat: do not set security context pod level
1888bde
@matheusfm
feat: update plugins role
f22510b
@matheusfm
feat: set allowPrivilegeEscalation to false in plugins security context
1017ac2
@matheusfm
feat: add type field in Plugin
c05f3a7
@matheusfm
chore: set PLUGIN_TYPE to worker env
7b888af
@matheusfm
chore: set type field on plugin manifests
1891485
@matheusfm
chore: handle misc plugins
51b46c5
@matheusfm
feat: implement trivy parse function
145d014
@matheusfm
chore: handle vulnerabilities in worker
1329d18
@matheusfm
chore: generate clientset for VulnerabilityReport
04fa665
@matheusfm
chore: add license header
980d678
@matheusfm
chore: update operator role
ef5dcee
@matheusfm
chore: update plugins role
8cbf4ae
@matheusfm
Copy link
Contributor Author

Zora 0.7.0-rc7 has been released.

@matheusfm
zora 0.7.0-rc7
349fcf8
@matheusfm
docs: add a button to zora dashboard
f0dc1a9
@matheusfm
docs: update helm chart readme
e6aeb8a
@matheusfm
docs: fix helm chart page link
a0cbe48
@matheusfm
docs: add resources page
cbd127c
@matheusfm
docs: update resources page title
770a022
@matheusfm
docs: add suspending scan page
0a78faf
@matheusfm
docs: add faq page
5f4c6f5
@matheusfm
docs: update faq
53bfe6a
@matheusfm
docs: update logo
caa3812
@matheusfm
docs: add retain issues page
ae836c4
@matheusfm
docs: add admonition note in suspend scan page
7bff921
@matheusfm
docs: update key features sorting
15cbd15
@matheusfm
docs: update trivy.md page
7243da8
@matheusfm
docs: add "ignore unfixed vulnerability" in sidebar
98983a3
@matheusfm
docs: update switch theme icon
ea20dcf
@matheusfm
docs: center try zora dashboard button
b6b6378
@matheusfm
docs: add note about vulnerability reports in Zora Dashboard
8e00edf
@matheusfm
docs: fix version links
b982721
@matheusfm
docs: add OCI registry support with helm
9f19e8b
@matheusfm
docs: add oss vs dashboard session in index.md
1a1a461
@matheusfm
docs: add note about zora dashboard arch in overview page
294daee
@matheusfm matheusfm marked this pull request as ready for review October 30, 2023 20:41
@matheusfm matheusfm merged commit 8cfdce4 into main Oct 31, 2023
4 checks passed
@matheusfm matheusfm deleted the feat/trivy-plugin branch October 31, 2023 12:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lucasjct lucasjct lucasjct approved these changes

Assignees

@matheusfm matheusfm

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@matheusfm @lucasjct