Skip to content

v0.0.52
Compare
Choose a tag to compare
@rdimitrov rdimitrov released this 14 Jun 06:38
· 1131 commits to main since this release
v0.0.52
328e2a1
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

What's Changed

  • Trusty: Block on deprecated, expose provenance by @puerco in #3422
  • Update Trusty PR evaluator/ruletype documentation by @puerco in #3423
  • Add fuzz test for JQ eval by @AdamKorcz in #3445
  • Add fuzzer for github event parsers by @AdamKorcz in #3440
  • Add fuzz test for diff ingester parser by @AdamKorcz in #3441
  • add fuzz test for crypto package by @AdamKorcz in #3442
  • add fuzz test for authz package by @AdamKorcz in #3443
  • add fuzz test for auth package by @AdamKorcz in #3444
  • Add fuzz test for rego evaluator by @AdamKorcz in #3439
  • build(deps): bump bufbuild/buf-setup-action from 1.32.1 to 1.32.2 by @dependabot in #3453
  • build(deps): bump github.com/bufbuild/buf from 1.32.1 to 1.32.2 in /tools by @dependabot in #3452
  • Implement process for migrating keys and algorithms by @dmjb in #3435
  • Extend the GitHub App configuration with an autoRegistration object by @jhrozek in #3449
  • build(deps): bump github.com/open-feature/go-sdk from 1.11.0 to 1.12.0 by @dependabot in #3457
  • Make github webhook easier to extend with new events for auto registration. by @blkt in #3346
  • Add Makefile target to generate encryption key by @JAORMX in #3464
  • build(deps): bump github.com/charmbracelet/bubbletea from 0.26.3 to 0.26.4 by @dependabot in #3471
  • Events of type "repository" now avoid checking hook id. by @blkt in #3463
  • Remove algorithm from crypto config by @dmjb in #3467
  • Rerun make gen by @dmjb in #3472
  • Add cron jobs to helm chart to purge and rotate secrets by @JAORMX in #3460
  • Add db host CLI argument to newly included jobs by @JAORMX in #3474
  • Auto-generated helm documentation update - 2024-05-31 09:57:21 by @github-actions in #3475
  • Auto-generated helm documentation update - 2024-05-31 11:45:36 by @github-actions in #3473
  • User minder-config for secret cleanup/rotation jobs by @JAORMX in #3477
  • Use minder-config for rotation job by @JAORMX in #3479
  • Actually mount key directory in rotation job by @JAORMX in #3480
  • Add a workflow that checks if make gen was run by @rdimitrov in #3476
  • Log error when unable to fetch credentials by @jhrozek in #3481
  • Add extra debug logging for DB connection in minder-server by @dmjb in #3478
  • Use fallback key ID when key version is empty by @dmjb in #3482
  • build(deps): bump github.com/openfga/go-sdk from 0.3.7 to 0.4.0 by @dependabot in #3469
  • Webhook handler always logs contextual information. by @blkt in #3483
  • Add API endpoint definitions for Minder invitation flow by @evankanderson in #3450
  • Define rule instance table for Minder by @dmjb in #3459
  • Auto-generated DB schema update - 2024-05-31 14:56:09 by @github-actions in #3484
  • Run make gen by @JAORMX in #3487
  • build(deps): bump github/codeql-action from 3.25.6 to 3.25.7 by @dependabot in #3497
  • build(deps): bump github.com/go-playground/validator/v10 from 10.20.0 to 10.21.0 by @dependabot in #3496
  • build(deps): bump github.com/itchyny/gojq from 0.12.15 to 0.12.16 by @dependabot in #3495
  • build(deps): bump github.com/spf13/viper from 1.18.2 to 1.19.0 by @dependabot in #3494
  • Adjust the AutoRegistration protobuf message to be more FE friendly by @jhrozek in #3504
  • Update protoc and regenerate by @jhrozek in #3505
  • Consider project hierarchy in profile evaluation by @JAORMX in #3499
  • Bump docusaurus from 3.3.2 to 3.4.0 by @eleftherias in #3507
  • Add ContextV2 protobuf structure by @JAORMX in #3506
  • build(deps): bump github.com/go-viper/mapstructure/v2 from 2.0.0-alpha.1 to 2.0.0 by @dependabot in #3514
  • Validate config before provider creation by @jhrozek in #3513
  • build(deps): bump github.com/openfga/openfga from 1.5.3 to 1.5.4 by @dependabot in #3515
  • Switch the pinned action support to use the new frizbee version by @rdimitrov in #3465
  • Creating providers with config by @jhrozek in #3334
  • Recover from panics from the control plane by @JAORMX in #3519
  • Move profile and ruletype logic out of engine package by @dmjb in #3520
  • build(deps): bump golang.org/x/term from 0.20.0 to 0.21.0 by @dependabot in #3525
  • build(deps): bump goreleaser/goreleaser-action from 5.1.0 to 6.0.0 by @dependabot in #3528
  • Move auth offline-token to a separate package by @rdimitrov in #3522
  • build(deps): bump golang.org/x/crypto from 0.23.0 to 0.24.0 by @dependabot in #3524
  • build(deps): bump golang.org/x/oauth2 from 0.20.0 to 0.21.0 by @dependabot in #3526
  • build(deps): bump github/codeql-action from 3.25.7 to 3.25.8 by @dependabot in #3527
  • build(deps): bump golang.org/x/tools from 0.21.0 to 0.22.0 in /tools by @dependabot in #3529
  • build(deps): bump github.com/deepmap/oapi-codegen/v2 from 2.1.0 to 2.2.0 in /tools by @dependabot in #3530
  • Add UserManagement feature flag by @rdimitrov in #3532
  • Webhook handler now processes installation_repositories events by @blkt in #3447
  • Validate provider config when creating the OAuth provider or the GitHub App provider. by @jhrozek in #3535
  • Add ClusterfuzzLite by @AdamKorcz in #3521
  • Replace unpinned actions with pinned action by @stacklokbot in #3537
  • User API: Add missing project display name and description by @puerco in #3451
  • Dual write rule instances to new and old tables by @dmjb in #3486
  • Change fuzzing test to avoid leaving files around by @dmjb in #3539
  • Remove the now-unused CreateGitHubOAuthProvider by @jhrozek in #3540
  • Check OpenID audience when validating token. by @evankanderson in #3541
  • build(deps): bump google/clusterfuzzlite from 82652fb49e77bc29c35da1167bb286e93c6bcc05 to 884713a6c30a92e5e8544c39945cd7cb630abcd1 by @dependabot in #3545
  • Marshall provider config back to JSON from parsed structures to strip extra keys by @jhrozek in #3544
  • build(deps): bump github.com/openfga/cli from 0.4.0 to 0.4.1 in /tools by @dependabot in #3547
  • Migrate existing rule instances into rule_instances table by @dmjb in #3534
  • Add database migration for the user_invites table by @rdimitrov in #3536
  • Minder CLI - New commands for auth invite - list, accept code and decline code by @rdimitrov in #3551
  • Auto-generated DB schema update - 2024-06-07 09:00:06 by @github-actions in #3553
  • build(deps): bump aquasecurity/trivy-action from 0.21.0 to 0.22.0 by @dependabot in #3554
  • Removes unneeded Registered field by @ChrisJBurns in #3563
  • build(deps): bump github.com/golangci/golangci-lint from 1.59.0 to 1.59.1 in /tools by @dependabot in #3564
  • Delete profiles before deleting project by @dmjb in #3561
  • Define evaluation history schemas by @dmjb in #3565
  • Auto-generated DB schema update - 2024-06-10 11:34:39 by @github-actions in #3566
  • build(deps): bump github.com/sigstore/sigstore-go from 0.3.0 to 0.4.0 by @dependabot in #3573
  • build(deps): bump github.com/stacklok/frizbee from 0.0.16 to 0.0.19 by @dependabot in #3572
  • build(deps): bump docker/build-push-action from 5.3.0 to 5.4.0 by @dependabot in #3571
  • build(deps): bump braces from 3.0.2 to 3.0.3 in /docs by @dependabot in #3576
  • Handle the old key when writing configuration, but write the new one by @jhrozek in #3575
  • Add project_id column to rule_instances by @dmjb in #3570
  • Auto-generated DB schema update - 2024-06-11 15:26:35 by @github-actions in #3578
  • Add batch creation logic for the reminder service by @Vyom-Yadav in #3413
  • Add comments to getEligibleRepositories, reduce time work in same, fix migration numbering by @evankanderson in #3580
  • Auto-generated DB schema update - 2024-06-11 14:13:08 by @github-actions in #3581
  • build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2 by @dependabot in #3585
  • build(deps): bump github.com/go-playground/validator/v10 from 10.21.0 to 10.22.0 by @dependabot in #3584
  • build(deps): bump google.golang.org/protobuf from 1.34.1 to 1.34.2 in /tools by @dependabot in #3583
  • Add validation of iss claim parameter by @evankanderson in #3552
  • Fix Git.Clone after 35bab8f by @evankanderson in #3587
  • build(deps): bump k8s.io/client-go from 0.30.1 to 0.30.2 by @dependabot in #3596
  • build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #3593
  • build(deps): bump github/codeql-action from 3.25.8 to 3.25.9 by @dependabot in #3594
  • Fix openfga bump by @puerco in #3590
  • Add support for user invites in ListInvitations by @evankanderson in #3592
  • Drop internal trusty REST code in favor of client from trusty-sdk by @puerco in #3523
  • Populate project_id field on rule_instances by @dmjb in #3579
  • Recover from panics in policy engine by @JAORMX in #3597
  • Do not dereference go dependency fields without checking the length of fields first by @jhrozek in #3598
  • Fix tools/ bootstrap make target by @puerco in #3601
  • build(deps): bump github.com/styrainc/regal from 0.22.0 to 0.23.1 by @dependabot in #3574
  • Simplify slice checks in go parser by @jhrozek in #3602
  • Update goreleaser to v2 by @rdimitrov in #3603
  • Fix the go mod tidy issue for goreleaser by @rdimitrov in #3606
  • Exec go generate in subshell by @puerco in #3607
  • build(deps): bump bufbuild/buf-setup-action from 1.32.2 to 1.33.0 by @dependabot in #3619
  • build(deps): bump github/codeql-action from 3.25.9 to 3.25.10 by @dependabot in #3620
  • build(deps): bump github.com/bufbuild/buf from 1.32.2 to 1.33.0 in /tools by @dependabot in #3621
  • Add make generate-tools target for goreleaser hooks by @rdimitrov in #3608

New Contributors

Full Changelog: v0.0.51...v0.0.52

Contributors

JAORMX, blkt, and 11 other contributors
Assets 23
Loading