DevFW-CICD/ingress-nginx-helm
16
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7983 commits 4 branches 217 tags 166 MiB
Commit graph

740 commits

Author SHA1 Message Date
James Strong
84b8270bd6 update test runner go base to 3.20 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2024-07-03 14:05:23 -04:00
James Strong
21d6a773d1 tag new test runner image with new nginx base 0.0.8 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2024-07-03 13:59:01 -04:00
Jintao Zhang
b90dd919e0
trigger build for NGINX-1.25 v0.0.8 (#11533) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2024-07-02 09:02:00 -07:00
Olivier Wenger
773590f791
bump alpine version to 3.20 to custom-error-pages (#11530) 2024-07-02 08:47:59 -07:00
Jon Carl
7de28cfcdb
add ssl patches to nginx-1.25 image for coroutines to work in lua client hello and cert ssl blocks (#11485) 
* feat: add ssl patches for coroutines to work in lua ssl blocks

Signed-off-by: Jon Carl <grounded042@joncarl.com>

* switch to include more patches

Signed-off-by: Jon Carl <grounded042@joncarl.com>

---------

Signed-off-by: Jon Carl <grounded042@joncarl.com>
 2024-07-02 06:25:59 -07:00
Stepan Paksashvili
6a111a974b
Docs: Add information about HTTP/3 support. (#11513) 
* [docs] update README to add information about HTTP/3 support

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* [docs] update README

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

---------

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
 2024-07-01 13:51:02 +02:00
JesseBot
6087e04cb1
Upgrade OWASP_MODSECURITY_CRS_VERSION 3.3.5 to 4.4.0 and update docs (#11511) 
Signed-off-by: jessebot <jessebot@linux.com>
 2024-07-01 11:05:15 +02:00
Stepan Paksashvili
44849cb302
[feature] bump nginx to 1.25.5 and add http3 module (#11470) 
* [feature] bump nginx to 1.25.5, add http3 module, and update lua-stream, lua_ngx, mimaloc, opentelemetry_cpp, opentelemetry_proto and opentelemtry_contrib

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

* [feature] revert opentelemetry and owasp updates

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

---------

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>
 2024-06-18 12:29:37 -07:00
Marco Ebert
9ca96df6af
CI: Bump forgotten Ginkgo versions. (#11467) 2024-06-15 01:29:28 -07:00
James Strong
0cf1994864
upgrade to alpine 3.20 (#11428) 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2024-06-09 17:17:59 -07:00
Ricardo Katz
cfe0daace1
Bump Kubernetes version on images (#11346) 2024-05-05 19:06:28 -07:00
dependabot[bot]
6bfc30a4b9
Bump golang.org/x/net in /images/kube-webhook-certgen/rootfs (#11283) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/net/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-04-19 06:44:17 -07:00
Long Wu Yuan
7decd01468
bumped certgeimage tag (#11212) 2024-04-05 03:31:01 -07:00
Long Wu Yuan
622e36fd6a
bump ginkgo to 2-17-1 in testrunner (#11202) 2024-04-04 08:07:33 -07:00
Marco Ebert
bf3fa53167
Owners: Promote Gacko to ingress-nginx-maintainers & ingress-nginx-reviewers. (#11165) 
* Owners: Sort `ingress-nginx-maintainers` & `ingress-nginx-reviewers`.

* Owners: Update URL in aliases.

* Images: Remove owners as it's identical to global owners.

* Images: Remove global owners from `kube-webhook-certgen` owners.

* Owners: Remove members from aliases covered by other aliases.

ingress-nginx-helm-maintainers:
- cpanato: Covered by ingress-nginx-maintainers
- strongjz: Covered by ingress-nginx-maintainers

ingress-nginx-helm-reviewers:
- cpanato: Covered by ingress-nginx-reviewers
- strongjz: Covered by ingress-nginx-reviewers

ingress-nginx-docs-maintainers:
- tao12345666333: Covered by ingress-nginx-maintainers

* Owners: Promote myself to `ingress-nginx-maintainers` & `ingress-nginx-reviewers`.
 2024-04-04 08:01:10 -07:00
James Strong
8d402ebfd8 update test image and go version 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2024-04-04 09:27:19 -04:00
James Strong
404bfc3485 force nginx rebuild 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2024-04-04 09:20:16 -04:00
Y.Horie
25d2758e94
fixes brotli build issue (#10484) 2024-03-30 09:23:32 -07:00
Carlos Tadeu Panato Junior
5052c8acc0
bump ginkgo to v2.17.1 (#11177) 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-03-29 05:39:28 -07:00
dependabot[bot]
e3ea23110a
Bump google.golang.org/protobuf in /images/custom-error-pages/rootfs (#11119) 
Bumps google.golang.org/protobuf from 1.28.0 to 1.33.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-14 07:32:08 -07:00
dependabot[bot]
a00a1499a0
Bump google.golang.org/protobuf in /images/kube-webhook-certgen/rootfs (#11120) 
Bumps google.golang.org/protobuf from 1.32.0 to 1.33.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-13 16:51:31 -07:00
Carlos Tadeu Panato Junior
12fbe9b163
golangci-lint update, ci cleanup, group dependabot updates (#11071) 
* bump golangci-lint to v1.56.x

Signed-off-by: cpanato <ctadeu@gmail.com>

* cleanup empty lines

Signed-off-by: cpanato <ctadeu@gmail.com>

* group dependabot updates

Signed-off-by: cpanato <ctadeu@gmail.com>

* run on job changes as well

Signed-off-by: cpanato <ctadeu@gmail.com>

* remove deprecated checks

Signed-off-by: cpanato <ctadeu@gmail.com>

* fix lints and format

Signed-off-by: cpanato <ctadeu@gmail.com>

---------

Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-03-07 02:39:53 -08:00
Ricardo Katz
862b05d913
Fix kubewebhook image tag (#11033) 2024-02-27 15:51:37 -03:00
Ricardo Katz
fa0bf81984
Bump go libraries (#11023) 
* Bump go libraries

* Fix update codegen execution

* Fix errors on klog

* Fix gzip test

* Bump libraries on webhook certgen

* Fix webhook-certgen compilation
 2024-02-27 09:52:42 -08:00
Ricardo Katz
0a87031bbd
Bump modsecurity on nginx 1.25 (#11024) 2024-02-26 17:08:45 -08:00
Ricardo Katz
391a304b10
Bump grpc and reintroduce OTEL compilation (#11021) 
* Bump grpc and reintroduce OTEL compilation

* Enable s390x again
 2024-02-26 15:05:00 -08:00
Milas Bowman
e78af97ecd
chore(deps): upgrade headers-more module to 0.37 (#10991) 
https://github.com/openresty/headers-more-nginx-module/compare/v0.34...v0.37

Signed-off-by: Milas Bowman <devnull@milas.dev>
 2024-02-26 04:32:18 -08:00
Ricardo Katz
585c297dda
Fix golang makefile var name (#10932) 2024-01-28 15:59:52 -08:00
Ricardo Katz
59daa4c327
Fixing image push (#10931) 2024-01-28 19:49:15 -03:00
Ricardo Katz
16821e4871
Bump alpine to 3.19.1 (#10930) 2024-01-28 13:53:29 -08:00
Ricardo Katz
5acc4230ee
Bump go to v1.21.6 and set a single source of truth (#10926) 2024-01-27 17:15:14 -08:00
Ricardo Katz
02e6ebc95a
Add OTEL build test and for NGINX v1.25 (#10889) 
* Add OTEL build test

* Simplify otel compilation

* Remove http2 deprecated arg

* Move image build to CI

* Turn image from scratch to optimize usage

* rollback image from scratch

* Final reviews on nginx v1.25 image

* Remove s390x from final image
 2024-01-27 07:33:50 -08:00
Long Wu Yuan
760bf8eb0c
fix run command in dockerfile of test-runner-image (#10921) 2024-01-26 19:21:16 +01:00
longwuyuan
f6a28feb63 bump ginkgo to 2-15-0 2024-01-23 00:15:40 +05:30
Long Wu Yuan
103dae67dc
changed yamale install from pip to manual download & install (#10886) 2024-01-22 12:08:48 +01:00
Ehsan Saei
8227888ba0
fix OpenTelemtry image build (#10888) 
* fix OpenTelemtry image build

* use fpic
 2024-01-21 21:56:39 +01:00
Long Wu Yuan
256374079f
changed pip to apk in test-runner dockerfile (#10885) 2024-01-20 04:20:03 +01:00
Ricardo Katz
ed3f067b8f
Build NGINX v1.25 image (#10629) 2024-01-19 23:31:41 +01:00
James Strong
c9c72c4e26
force nginx rebuild (#10883) 2024-01-19 22:33:56 +01:00
Long Wu Yuan
bf84f0eda2
bump yamllinter to v1330 (#10875) 2024-01-19 15:44:44 +01:00
Long Wu Yuan
dcb99b2fa9
added --user flag to pip install (#10874) 2024-01-19 04:11:30 +01:00
Long Wu Yuan
94a635acf8
bump pinned ginkgo version to v2.14.0 (#10872) 2024-01-18 21:08:48 +01:00
Ricardo Katz
a9eb4dba40
Use dockerhub for e2e and demo images (#10851) 2024-01-15 02:09:13 +01:00
Ricardo Katz
42627fb1bd
Use dockerhub for e2e and demo images (#10850) 2024-01-15 01:35:46 +01:00
Ricardo Katz
c9a3571556
Reuse workflow CI (#10826) 
* Reuse workflow CI

* Simplify images Makefiles
 2024-01-13 14:15:35 +01:00
Adrian
dc36582389
change MODSECURITY_VERSION_LIB to 3.0.11 (#10800) 
* feat: change MODSECURITY_VERSION_LIB to 3.0.11

* use sha commit instead of tag
 2023-12-27 00:54:00 +01:00
Ricardo Katz
1a7112e063
Add common label to Dockerfiles (#10803) 2023-12-26 02:38:42 +01:00
Ehsan Saei
7c998b5937
otel distroless (#10741) 2023-12-08 23:15:02 +01:00
James Strong
208ea484a8 revert golang 1.21.5 and alpine 3.19 not available yet 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-12-08 14:43:21 -05:00
James Strong
f555a5659a smore missing builds 2023-12-08 14:41:23 -05:00
James Strong
5d82d18350 missed some 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-12-08 14:37:20 -05:00
James Strong
c211e75065 upgrade alpine to 3.19.0 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-12-08 14:15:22 -05:00
James Strong
6807537a70
upgrade go 1.21.5 (#10732) 
* upgrade go 1.21.5

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update golang gha

Signed-off-by: James Strong <strong.james.e@gmail.com>

* supgrade golang lint ci to v1.55.2

* sfix all golang lint ci errors

* sget a nginx build as well

* srevert some e2e changes

* srevert some e2e changes

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-12-08 01:52:14 +01:00
Sonu Kumar Singh
6152695c78
images: upgrade to Alpine 3.18.5 (#10722) 2023-12-07 15:57:33 +01:00
James Strong
a75db69c2e
Revert "upgrade nginx" 2023-11-29 11:44:48 -05:00
James Strong
3a9cd1bd7e sremove the v 2023-11-21 13:23:04 -05:00
James Strong
1adb1116a4 remove unneeded patches 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-11-21 12:19:02 -05:00
James Strong
4e39571ed4 upgrade nginx 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-11-21 11:44:54 -05:00
Jintao Zhang
0a054d1f58
chore(dep): change lua-resty-cookie's repo (#10630) 
since cloudflare has archived the upstream repo,
we choose a more active forked repo to use.

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-11-19 22:14:57 +01:00
Ricardo Katz
9ed0d7f7af
Separate third party NGINX configuration (#10470) 
* Document container separation

* Separate configurations
 2023-11-03 14:46:32 +01:00
Ricardo Katz
a879829408
Fix fcgi configmap value parsing (#10528) 2023-10-17 01:10:16 +02:00
Jintao Zhang
0055ba3ea6
Remove legacy GeoIP from image (#10500) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
 2023-10-16 00:41:51 +02:00
Ricardo Katz
8b53cabe03
Bump curl and Go version (#10503) 
* Bump curl and Go version

* Add NGINX BAse image scanning

* Try again
 2023-10-11 16:16:11 +02:00
Mark D. Gray
86f1cedcad
add upstream patch for CVE-2023-44487 (#10494) 
* add upstream patch

* add source

* remove auto-added depend
 2023-10-11 02:36:13 +02:00
Ricardo Katz
3e26fc3740
Revert "Remove curl from nginx base image (#10477)" (#10479) 
This reverts commit 8bd33d29e7.
 2023-10-07 04:04:58 +02:00
James Strong
223c70bd09
update error and otel to have all the arch we support (#10476) 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-10-05 07:42:21 +02:00
Ricardo Katz
8bd33d29e7
Remove curl from nginx base image (#10477) 2023-10-04 21:48:34 +02:00
James Strong
3a28016a64
fix brotli build issues 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-10-01 14:51:48 -04:00
Nicolas Woerner
362ec37778
images: upgrade to Alpine 3.18.4 (#10466) 2023-10-01 11:18:44 -07:00
Rashad Mammadli
c3194dd388
upgrade owasp modsecurity core rule set to v3.3.5 (#10323) 2023-09-24 07:54:56 -07:00
Son Bui
4664b741ff
fix: remove curl on base container #9716 (#10306) 
* fix: remove curl on base container #9716

* fix: remove curl on chroot container #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: remove curl on test runner image #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: remove curl on e2e runner container #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

---------

Signed-off-by: Son Bui <sonbv00@gmail.com>
 2023-09-08 10:34:15 -07:00
Ricardo Katz
8b85bada82
Bump Go version to 1.21.1 (#10377) 
* Bump Go version to 1.21.1

* Bump testrunner image
 2023-09-07 13:40:58 -07:00
Ricardo Katz
5bb82dcb7e
Bump Go version to 1.21.1 on testrunner (#10378) 2023-09-07 16:55:06 -03:00
Ehsan Saei
02236ca965
Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57.0 (#10352) 
* Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57

* upgrade module
 2023-09-03 14:13:47 -07:00
Chen Chen
b3060bfbd0
Fix golangci-lint errors (#10196) 
* Fix golangci-lint errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix dupl errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix comments

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix errcheck lint errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix assert in e2e test

Signed-off-by: z1cheng <imchench@gmail.com>

* Not interrupt the waitForPodsReady

Signed-off-by: z1cheng <imchench@gmail.com>

* Replace string with constant

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix comments

Signed-off-by: z1cheng <imchench@gmail.com>

* Revert write file permision

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
 2023-08-31 00:36:48 -07:00
Lucas Fernando Cardoso Nunes
6b05e9b06e
fix: add /etc/mime.types #10309 (#10310) 
Signed-off-by: Lucas Fernando Cardoso Nunes <lucasfc.nunes@gmail.com>
 2023-08-13 08:27:20 -07:00
Jintao Zhang
c83422fd65 fix deps sha 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-07-22 06:41:22 +08:00
James Strong
b0081a574a
update reg 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-07-20 21:05:38 -04:00
James Strong
e8097d8b8f
fix gcloud builds 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-07-20 21:04:21 -04:00
James Strong
24fda9da20
Golang 1.20.6 for test runner (#10230) 
* Golang 1.20.6 for test runner

* alpine 3.18.2 as well

Signed-off-by: James Strong <strong.james.e@gmail.com>

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-07-20 14:34:12 -07:00
Jintao Zhang
6416ed821d
chore: bump OpenResty to v1.21.4.2 (#10219) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-07-20 08:36:09 -07:00
Chen Chen
d44a8e0045
Fix golang-ci linter errors (#10128) 
* Fix golang-ci linter errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix gofmt errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Add nolint comment to defaults.Backend in Configuration

Signed-off-by: z1cheng <imchench@gmail.com>

* Add #nosec comment to rand.New func

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix errcheck warnings

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix gofmt check

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix unit tests and comments

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
 2023-07-03 05:50:52 -07:00
Ricardo Katz
ebb6314494
Deprecate and remove AJP support (#10158) 2023-07-02 02:26:49 -07:00
Long Wu Yuan
643c475db0
bump pinned golang to 1.20.5 (#10127) 2023-06-25 18:33:11 -07:00
James Strong
58650d6aaa
rebuild nginx base container image 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-06-23 15:29:48 -04:00
James Strong
44b0067191
add gcloud ignore 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-06-23 09:31:00 -04:00
James Strong
8cdbcfa61c
golang 1.20.5 bump (#10120) 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-06-22 10:25:41 -07:00
Jintao Zhang
cccba35005
Revert "Remove fastcgi feature" (#10081) 
* Revert "Remove fastcgi feature (#9864)"

This reverts commit 90ed0ccdbe.

* revert fastcgi* annotations warning

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

---------

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-06-13 12:55:59 -07:00
Ehsan Saei
436df32c2c
add distroless otel init (#10035) 
add distroless otel init
 2023-06-12 03:47:48 -07:00
Ricardo Katz
90ed0ccdbe
Remove fastcgi feature (#9864) 2023-06-11 13:33:47 -07:00
David Goffredo
05e5956545
tracing: upgrade to dd-opentracing-cpp v1.3.7 (#10031) 2023-06-11 11:45:47 -07:00
James Strong
bd19644e5c
Merge pull request #10025 from strongjz/nginx-tag 
Add a tag here so we force nginx builds to cloudbuild
 2023-06-02 11:03:35 -04:00
Stilian Stoilov
8a61027f1a
Upgrade to Golang 1.20.4 (#10016) 
* Upgrade to Golang 1.20.4 and alpine 3.18.0

* Handle Review comments
 2023-06-01 18:07:46 -07:00
James Strong
9e125c597e
adding a tag here so we force nginx builds to cloudbuild 
Signed-off-by: James Strong <james.strong@chainguard.dev>
 2023-06-01 13:33:20 -04:00
Jintao Zhang
c2e1f34cbe
images: upgrade to Alpine 3.18 (#9997) 
Alpine Linux 3.18 was released
https://alpinelinux.org/posts/Alpine-3.18.0-released.html

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-05-26 17:54:49 -07:00
Long Wu Yuan
5bc7dc8a6a
bumped ginkgo to v2.9.5 (#9985) 2023-05-22 10:52:58 -07:00
Apoorva Kulkarni
3b3cf8b331
Use dl.k8s.io instead of hardcoded GCS URIs (#9946) 2023-05-11 08:39:03 -07:00
guessi
788b3606b1
Keep project name display aligned (#9920) 2023-05-05 09:31:13 -07:00
Brendan Kamp
6d91c2a54c
chore: create httpbun image (#9926) 
Signed-off-by: Spazzy <brendankamp757@gmail.com>
 2023-05-05 05:27:13 -07:00
Ricardo Katz
297036e169
Deprecate and remove influxdb feature (#9861) 2023-04-16 17:26:43 -07:00
James Strong
24e0e29386
add short sha to gcloud build and makefiles 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-04-07 10:42:37 -04:00
James Strong
26d83d1b20
update all container tags with date and sha, upgrade all containers (#9834) 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-04-06 10:25:48 -07:00
James Strong
91057c439c
Merge pull request #9820 from sarab97/machine-change 
Switch from N1 to E2 machine
 2023-04-04 10:59:07 -04:00
viq
c76179c04e
ISO 8601 date format (#9682) 
Adjust the tag to be in sortable format, compatible with ISO 8601.
 2023-04-04 07:45:56 -07:00
sarab
ddde3b0d60 Switched from N1 to E2 machine 2023-04-02 03:03:12 +05:30
Saumya
fec1dbe3a1
changes Makefile of echo folder to trigger code-build (#9754) 2023-03-18 15:13:16 -07:00
Long Wu Yuan
520384b110
bumped ginkgo to v2.9.0 (#9722) 2023-03-14 04:36:17 -07:00
James Strong
66a760794f
update to golang 1.20 (#9690) 
update alpine and golang
remove nano
update go modules
remove need for openssl external cli
fix stale

Signed-off-by: James Strong <james.strong@chainguard.dev>
 2023-03-11 20:38:39 -08:00
cui fliter
82e836fbe8
fix some comments (#9688) 
Signed-off-by: cui fliter <imcusg@gmail.com>
 2023-03-05 11:00:57 -08:00
dependabot[bot]
640bdac76d
Bump golang.org/x/sys in /images/custom-error-pages/rootfs (#9671) 
Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.0.0-20210603081109-ebe580a85c40 to 0.1.0.
- [Release notes](https://github.com/golang/sys/releases)
- [Commits](https://github.com/golang/sys/commits/v0.1.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-05 10:56:57 -08:00
dependabot[bot]
9126401eeb
Bump golang.org/x/net in /images/kube-webhook-certgen/rootfs (#9645) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.1.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.1.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-17 16:00:03 -08:00
dependabot[bot]
15ecd2531f
Bump github.com/prometheus/client_golang (#9630) 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.11.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-15 05:54:24 -08:00
Ehsan Saei
96b3d21655
bump OpenTelemetry (#9489) 2023-01-07 15:37:27 -08:00
James Strong
f685c9b379
force rebuild for curl cve 
Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-21 12:36:20 -05:00
Saumya
6ffaef32ab
Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9432) 2022-12-21 00:43:25 -08:00
James Strong
c648595cd7
update the nginx run container for alpine:3.17.0 (#9430) 
Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-20 19:55:25 -08:00
my-git9
787ea74b6b
cleanup: remove ioutil for new go version (#9427) 
Signed-off-by: xin.li <xin.li@daocloud.io>

Signed-off-by: xin.li <xin.li@daocloud.io>
 2022-12-20 09:39:46 -08:00
James Strong
81d40b70a5
Merge pull request #9428 from strongjz/patch-otel 
patch otel docker file
 2022-12-20 09:54:18 -05:00
James Strong
58948acd3d
gcloud build is timing out 
Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-20 09:41:32 -05:00
James Strong
690969ba5f
patch otel docker file 
Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-20 09:22:51 -05:00
James Strong
e3e0d9c1f4
start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417) 
* start upgrade to 1.19.4

Signed-off-by: James Strong <james.strong@chainguard.dev>

* add matrix to image test-image

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update to alpine 3.17

Signed-off-by: James Strong <james.strong@chainguard.dev>

* remove need for curl

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-18 17:07:43 -08:00
Saumya
a0dbbd2fb1
Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9408) 
Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0

Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0
 2022-12-17 03:37:41 -08:00
Adam Hukalowicz
49bd5dd763
ModSecurity dependencies update to avoid Memory Leaks (#9330) 
* Update ModSecurity to latest head

* modsecurity version pinned
 2022-12-04 11:39:54 -08:00
Long Wu Yuan
9d562c47ab
create nsswitch-conf if missing (#9339) 2022-11-25 01:28:06 -08:00
LongWuYuan
1e08519a73 fixed multiple ginkgo versions 2022-11-25 06:09:11 +05:30
caption
7b53347984
update gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b to 3.0.0 (#9277) 2022-11-21 13:18:17 -08:00
Ehsan Saei
a66ee73c5a
OpenTelemetry static linking (#9286) 
* static otel lib

* clean

* nginx 1.21
 2022-11-14 11:50:43 -08:00
Oblivion
8949379931 fix CVE-2022-27664 2022-11-08 16:46:53 +00:00
Ehsan Saei
90a9d64575
Fix CVE-2022-1996 (#9244) 
* CVE-2022-1996

* clean

* fix

* fix
 2022-11-07 15:46:17 -08:00
Ehsan Saei
5a42ec4f35
Fix CVE-2022-32149 (#9258) 
* Fix CVE-2022-32149

* fix CI
 2022-11-07 15:44:17 -08:00
Jintao Zhang
0b5e068511
chore: update NGINX to 1.21.6 (#9231) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-10-31 07:10:45 -07:00
Jintao Zhang
bf8362cb50
chore: bump NGINX version v1.21.4 (#8889) 
* chore: bump NGINX version v1.21.4

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* chore: bump all others

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* apply all patches

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* fix files hash

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* fix ajp module

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-10-28 16:40:39 -07:00
James Strong
93df796767
upgrade to golang 1.19.2 (#9124) 
* upgrade to golang 1.19.2

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update e2e testing to 1.25 kind

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
 2022-10-12 12:39:00 -07:00
Nicolas Julian
855bcbce34
Update Version ModSecurity and Coreruleset (#9086) 
This is related to some new bugs that found in LiveHackingEvent 1337up0522. The latest coreruleset need *ModSecurity version 2.9.6 or 3.0.8*

- https://terjanq.medium.com/waf-bypasses-via-0days-d4ef1f212ec
- https://coreruleset.org/20220920/crs-version-3-3-4-and-3-2-3/
- https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/
- https://github.com/coreruleset/coreruleset/releases/tag/v3.3.4
 2022-09-27 06:59:51 -07:00
Long Wu Yuan
d32f8c3439
bump go to v1.19.1 (#9057) 2022-09-16 06:15:18 -07:00
Ehsan Saei
981ce38a7f
fix otel init_module (#9028) 2022-09-06 16:34:23 -07:00
Ehsan Saei
9a42ded8ba
fix LD_LIBRARY_PATH (#9017) 2022-09-05 11:16:36 -07:00
qilong.qiu
79a311d3be
Bump chart testing from 3.0.0 to 3.7.0 (#9000) 2022-09-04 18:28:36 -07:00
Ismayil Mirzali
26bc6e4e50
bump Golang to 1.19 #8932 (#8970) 
* fix: convert to LF line endings

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

* Pin exact Go bugfix versions for CI jobs

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

* Bump go.mod and Dockerfiles to Go 1.19.0

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
 2022-08-26 09:22:25 -07:00
Jintao Zhang
e19026fe4e
upgrade yamale and yamllint version (#8960) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-08-23 01:05:23 -07:00
Long Wu Yuan
9fdbef829c
bump alpine to v3.16.2 (#8934) 2022-08-18 05:54:36 -07:00
Jintao Zhang
f0490cbfbf
fix: change all cloudbuild jobs configuration (#8870) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-07-26 14:43:11 -07:00
Jintao Zhang
fe116d62cb
fix: change cloudbuild configuration (#8869) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-07-26 13:01:10 -07:00
Jintao Zhang
d2fbd38cd1
Revert "fix: test-runner prow build" (#8865) 
This reverts commit 423008b752.
 2022-07-24 18:40:58 -07:00
Jintao Zhang
92f81e7449
fix: test-runner prow build (#8864) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-07-24 09:22:57 -07:00
Jintao Zhang
423008b752 fix: test-runner prow build 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-07-25 00:08:53 +08:00
Long Wu Yuan
1c03a88661
update baseimage after bump of opentracing-cpp (#8861) 2022-07-24 09:00:57 -07:00
Long Wu Yuan
c5766dc011
changed baseimage sha & bumped ginkgo to 2.1.4 in test (#8860) 2022-07-23 18:54:57 -07:00
David Goffredo
18ee046b43
update dd-opentracing-cpp version in nginx build script (#8848) 
* update dd-opentracing-cpp version in nginx build script

* idiomatic placement of "v" prefix in Datadog plugin version tag
 2022-07-23 11:02:57 -07:00
Long Wu Yuan
f0ff7e841d
bump to alpine-3.16.1 (#8858) 2022-07-23 07:24:57 -07:00