-
Notifications
You must be signed in to change notification settings - Fork 735
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* restore node update permission to master until image tag can be updated (#2513) * Merge branch 'release-1.14' (#2517) * network policies update to readme (#2478) * init draft of network policy desc * add security note * fixup * fixup * fix placeholder link * Update manifest for cni 1.14 (#2526) * Mimic VPC-RC limit struture (#2516) * limits api pkg (#2528) * Update kops tests for 1.28 and fix generate-cni-yaml script (#2536) * skip IPAMD events test (#2537) * chore: remove refs to deprecated io/ioutil (#2541) * Change default Node Agent ports for health and metrics (#2545) * remove self-managed node group from pod-eni test suite (#2547) * bump controller runtime to 0.16.1 (#2548) Co-authored-by: Joseph Chen <[email protected]> * update agent image (#2554) * fix(chart): Switch base64 encoded cniConfig.fileContents to the binaryData (#2552) * Update the use of privileged flag in aws-vpc-cni manifest (#2555) * increment default Calico version for helm compatibility (#2560) * update nginx image (#2561) * Only metrics (#2557) Prometheus metrics for capturing ENI IP usage and no available IP address errors Co-authored-by: Lindsay Hanks <[email protected]> * CHANGELOG, chart, and manifest updates for VPC CNI v1.15.0 release (#2563) * remove calico test suite from weekly integration tests (#2559) * remove addon-tests integration suite as it is no longer needed (#2564) * Only metrics (#2569) * rename warm pool metrics --------- Co-authored-by: Lindsay Hanks <[email protected]> * Fix unused version variable (#2566) * Update example table 'Pod per Prefixes' value (#2573) * Bandwidth plugin with NP is currently unsupported (#2572) * Bandwidth plugin with NP * Messaging review * pass CNINode scheme to client only (#2570) * reduce api calls (#2575) * Add region flag to describe-addon command (#2576) * add ENABLE_V4_EGRESS (#2577) * Add test registry parameter for ipv6 and CNI full tests (#2585) * update golang image (#2586) * increase time for service readiness (#2587) * do not patch CNINode for custom networking unless podENI is enabled (#2591) * Remove self-managed node group from custom-networking suite (#2590) * remove self-managed node group from custom-networking suite * Select CNI manifest based on regions (#2593) * Update metrics helper image url based on region (#2604) * dependabot updates (#2605) * Graceful termination for service connectivity tests (#2611) * update CHANGELOG, charts, and manifests in master following v1.15.1 release (#2614) * go module updates and golang builder image update (#2615) * update Golang to 1.21.3 (#2616) * Stricter dependency/security review (#2617) * Stricter dependency/security review Signed-off-by: Davanum Srinivas <[email protected]> * move common things to a separate file Signed-off-by: Davanum Srinivas <[email protected]> --------- Signed-off-by: Davanum Srinivas <[email protected]> * update actions for go 1.21 and fix deps action warnings (#2618) --------- Signed-off-by: Davanum Srinivas <[email protected]> Co-authored-by: Jay Deokar <[email protected]> Co-authored-by: Geoffrey Cline <[email protected]> Co-authored-by: Joseph Chen <[email protected]> Co-authored-by: guangwu <[email protected]> Co-authored-by: Joseph Chen <[email protected]> Co-authored-by: Valentin Zayash <[email protected]> Co-authored-by: lnhanks <[email protected]> Co-authored-by: Lindsay Hanks <[email protected]> Co-authored-by: 김은빈 <[email protected]> Co-authored-by: Jayanth Varavani <[email protected]> Co-authored-by: Davanum Srinivas <[email protected]>
- Loading branch information
1 parent
e82795a
commit 944ca36
Showing
18 changed files
with
295 additions
and
1,642 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,46 @@ | ||
name: 'golang-govulncheck-action' | ||
description: 'Run govulncheck' | ||
inputs: | ||
go-version-input: # version of Go to use for govulncheck | ||
description: 'Version of Go to use for govulncheck' | ||
required: false | ||
check-latest: | ||
description: 'Set this option to true if you want the action to always check for the latest available Go version that satisfies the version spec' | ||
required: false | ||
default: false | ||
cache: | ||
description: 'Used to specify whether Go caching is needed. Set to true, if you would like to enable caching.' | ||
required: false | ||
default: true | ||
go-package: | ||
description: 'Go Package to scan with govulncheck' | ||
required: false | ||
default: './...' | ||
work-dir: | ||
description: 'Directory in which to run govulncheck' | ||
required: false | ||
default: '.' | ||
repo-checkout: | ||
description: "Checkout the repository" | ||
required: false | ||
default: true | ||
go-version-file: | ||
description: 'Path to the go.mod or go.work file.' | ||
required: false | ||
runs: | ||
using: "composite" | ||
steps: | ||
- if: inputs.repo-checkout != false # only explicit false prevents repo checkout | ||
uses: actions/checkout@v4 | ||
- uses: actions/[email protected] | ||
with: | ||
go-version: ${{ inputs.go-version-input }} | ||
check-latest: ${{ inputs.check-latest }} | ||
go-version-file: ${{ inputs.go-version-file }} | ||
cache: ${{ inputs.cache }} | ||
- name: Install govulncheck | ||
run: go install golang.org/x/vuln/cmd/govulncheck@latest | ||
shell: bash | ||
- name: Run govulncheck | ||
run: govulncheck -C ${{ inputs.work-dir }} ${{ inputs.go-package }} | ||
shell: bash |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,39 @@ | ||
name: "Dependency Review" | ||
on: | ||
pull_request: | ||
branches: | ||
- "master" | ||
- "release*" | ||
permissions: | ||
contents: read | ||
jobs: | ||
dependency-review: | ||
runs-on: ubuntu-latest | ||
steps: | ||
- name: "Checkout Repository" | ||
uses: actions/checkout@v4 | ||
with: | ||
show-progress: false | ||
- name: "Dependency Review" | ||
uses: actions/dependency-review-action@v3 | ||
govulncheck: | ||
runs-on: ubuntu-latest | ||
steps: | ||
- name: "Checkout Repository" | ||
uses: actions/checkout@v4 | ||
with: | ||
show-progress: false | ||
- id: govulncheck | ||
uses: ./.github/actions/govulncheck | ||
with: | ||
go-version-input: 1.21.3 | ||
go-version-file: go.mod | ||
cache: false | ||
repo-checkout: false | ||
- id: govulncheck-tests-agent | ||
uses: ./.github/actions/govulncheck | ||
with: | ||
go-version-input: 1.21.3 | ||
go-version-file: test/agent/go.mod | ||
cache: false | ||
repo-checkout: false |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.