github/zot
1
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2026-06-17 04:48:26 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,099 Commits 38 Branches 132 Tags
60dc8569ecf1bccdc4fa9945707d126f2622b167
Commit Graph

1099 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ramkumar Chinchani 1c9db99b0d chore(deps): fix dependabot alerts (#1077) 
https://github.com/project-zot/zot/pull/1071
https://github.com/project-zot/zot/pull/1075
https://github.com/project-zot/zot/pull/1076


Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-12-20 11:59:04 -08:00
Ramkumar Chinchani 2571e8e5fc chore(deps): fix dependabot alerts (#1074) 
https://github.com/project-zot/zot/pull/1069
https://github.com/project-zot/zot/pull/1070
https://github.com/project-zot/zot/pull/1071
https://github.com/project-zot/zot/pull/1072
https://github.com/project-zot/zot/pull/1073


Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-12-19 14:59:31 -08:00
peusebiu 7103953777 fix(sync): fix sync on demand with docker library (#1065) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-12-16 09:33:46 -08:00
Nicol 05f75e041c refactor: Cleanup/simplify test cases (#1041) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2022-12-15 13:22:18 -08:00
Ramkumar Chinchani 9136479206 docs: add pkg.go.dev badge (#1061) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-12-13 09:05:04 -08:00
Ramkumar Chinchani 2efa80d1ec chore(deps): fix dependabot alerts (#1060) 
https://github.com/project-zot/zot/pull/1057
https://github.com/project-zot/zot/pull/1058
https://github.com/project-zot/zot/pull/1059
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-12-12 14:09:34 -08:00
junya koyama f201678943 fix(swagger): update docs.go - fix typos 
Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
 2022-12-12 17:47:49 +02:00
Andreea Lupu ec05137eda feat(scrub): add scrub logic for ImageIndex media type (#1031) 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2022-12-10 16:38:01 -08:00
alexstan12 8fb11180d4 fix: queries with images as arguments without a reference should return an error (#1040) 
Currently there is no push-back on queries that should contain image names but
have only the repo name. This commit adds a check that will return an error for images
w/o a reference(tag or digest).

Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
 2022-12-09 11:40:06 -08:00
peusebiu 024b13efe6 fix(sync): syncing OCI artifacts with distribution package fails (#1013) 
sync OCI artifacts using REST APIs

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-12-09 11:38:00 -08:00
Ramkumar Chinchani 37e6c6db0e ci: remove superfluous parts of github workflows (#1050) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-12-07 12:46:50 -08:00
peusebiu cbf88bd668 fix(test): consolidate flaky scrub test (#1042) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-12-07 11:04:33 -08:00
Ramkumar Chinchani d78f1d962f chore(deps): fix dependabot alerts (#1048) 
https://github.com/project-zot/zot/pull/1043
https://github.com/project-zot/zot/pull/1044
https://github.com/project-zot/zot/pull/1045
https://github.com/project-zot/zot/pull/1046
https://github.com/project-zot/zot/pull/1047

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-12-06 09:09:03 -08:00
Ramkumar Chinchani 69f0cf6bb4 fix(config): warn if cve is used with remote storage driver (#1034) 
* fix(config): warn if cve is used with remote storage driver

Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>

* fix: also check if search is enabled

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>

Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
Co-authored-by: Catalin Hofnar <catalin.hofnar@gmail.com>
v1.4.3-rc9 v1.4.3 		2022-11-30 09:35:06 +02:00
Ramkumar Chinchani 72abab4947 perf(zb): cleanup tool output (#1033) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-29 14:04:36 -08:00
Ramkumar Chinchani ffa223de43 chore(deps): fix dependabot alerts (#1030) 
https://github.com/project-zot/zot/pull/1024
https://github.com/project-zot/zot/pull/1025
https://github.com/project-zot/zot/pull/1026
https://github.com/project-zot/zot/pull/1027
https://github.com/project-zot/zot/pull/1028

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-29 16:41:01 +02:00
peusebiu c82748ab39 Upgrade oras cli (#1021) 
* chore: upgrade oras cli

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>

* fix(oci references): referrers API should not return 404 if repo exists

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-28 10:43:53 -08:00
peusebiu 1d97d1e796 feat: gc untagged manifests and signatures without references (#948) 
closes #906 #907

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-24 11:00:22 -08:00
peusebiu 4753a0f587 fix(routes): set Content-Length on GetManifest (#1019) 
notation sign image index exits with "missing Content-Length" error

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-24 10:53:48 -08:00
alexstan12 f75bce3085 feat(graphql): add an api to return referrers (#1009) 
UI can now make use of OCI artifacts and references using `Referrers` gQL query.
It returns a list of descriptors that refer on their `subject` field to another
digest.

Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
v1.4.3-rc8 		2022-11-23 10:53:28 -08:00
Ramkumar Chinchani 8746a49268 fix: handle remote cache driver misconfig (#1011) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-23 00:19:15 -08:00
Ramkumar Chinchani 070941b1b3 fix(oras): relax artifactType check to allow other types (#1010) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-23 00:15:33 -08:00
Catalin-George Hofnar 31b9481713 feat(cache): dynamodb implementation (#953) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-11-22 10:29:57 -08:00
peusebiu 49c3d05706 fix(storage): sanitize storage locks (#1003) 
removed all locks from common code
removed locks from GetBlobContent

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-22 10:13:08 -08:00
peusebiu 6ee3d802e7 test(sync): added blackbox tests for sync (#1008) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-22 10:10:32 -08:00
peusebiu 168d21da1e fix(storage): deleting manifests with identical digests (#951) 
Suppose we push two identical manifests (sharing same digest) but with
different tags, then deleting by digest should throw an error otherwise
we end up deleting all image tags (with gc) or dangling references
(without gc)

This behaviour is controlled via Authorization, added a new policy
action named detectManifestsCollision which enables this behaviour

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>

Co-authored-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-18 09:35:28 -08:00
Lisca Ana-Roberta 4e13619dc8 fix: signatures now showing correctly (#954) 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
 2022-11-15 09:06:25 -08:00
peusebiu e96c80c344 feat(sync,s3): added s3 logic for ORAS and OCI artifacts (#985) 
added sync logic for OCI artifacts

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-14 22:21:49 -08:00
Ramkumar Chinchani fb3e4ec2ef docs: fix README.md 2022-11-14 14:42:58 -08:00
Ramkumar Chinchani b473d34ca9 docs: update README with minimal image and urls (#1001) 
Thanks @dtzar for the initial PR.
https://github.com/project-zot/zot/pull/992

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-14 14:03:36 -08:00
Ramkumar Chinchani 7790b944e3 chore(deps): fix dependabot alerts (#1000) 
https://github.com/project-zot/zot/pull/996
https://github.com/project-zot/zot/pull/997
https://github.com/project-zot/zot/pull/998
https://github.com/project-zot/zot/pull/999

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-14 12:29:28 -08:00
Ramkumar Chinchani bdddb8fab9 test(swagger): remove autogenerated swagger code from code coverage (#993) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
v1.4.3-rc7 		2022-11-13 16:43:28 +02:00
Ramkumar Chinchani 480aea06c0 fix(ci): set correct arch/os for published container images (#991) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-12 11:08:45 +02:00
peusebiu 08c8d493f5 fix(ci): fix releasing zot minimal image (#990) 
closes #988

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
v1.4.3-rc6 		2022-11-10 21:55:07 -08:00
Lisca Ana-Roberta 5eeba938ab fix: ImageSummary should have author information (#976) 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
 2022-11-10 15:02:17 -08:00
Ramkumar Chinchani 97e7f7f756 build: move build artifacts into build/ (#986) 
Unclutter the root dir by moving all docker/stacker build artifacts into
build/ folder.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-10 12:09:39 -08:00
Ramkumar Chinchani 94d073ceab chore(deps): fix dependabot alerts (#977) 
https://github.com/project-zot/zot/pull/973
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-08 12:59:18 -08:00
Ramkumar Chinchani f9b575e1cf chore(deps): fix dependabot alerts (#965) 
https://github.com/project-zot/zot/pull/959
https://github.com/project-zot/zot/pull/960
https://github.com/project-zot/zot/pull/961
https://github.com/project-zot/zot/pull/962
https://github.com/project-zot/zot/pull/963
https://github.com/project-zot/zot/pull/964

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
v1.4.3-rc5 		2022-11-08 00:39:06 -08:00
Ramkumar Chinchani c0f93caacb feat(artifact): add OCI references support (#936) 
Thanks @jdolitsky et al for kicking off these changes at:
https://github.com/oci-playground/zot/commits/main

Thanks @sudo-bmitch for reviewing the patch

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-08 00:38:16 -08:00
Lisca Ana-Roberta eb722905cb fix: fixed image size not counting config and manifest sizes (#937) 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
 2022-11-04 10:27:34 -07:00
Catalin-George Hofnar 4170d2adbc refactor(cache): rewrote/refactored cachedb functionality to use interface (#667) 
Moved boltdb to a driver implementation for such interface
Added CreateCacheDatabaseDriver in controller
Fixed default directory creation (boltDB will only create the file, not the dir
Added coverage tests
Added example config for boltdb
Re-added caching on subpaths, rewrote CreateCacheDatabaseDriver
Fix tests
Made cacheDriver argument mandatory for NewImageStore, added more validation, added defaults
Moved cache interface to own file, removed useRelPaths from config
Got rid of cache config, refactored
Moved cache to own package and folder
Renamed + removed cache factory to backend, replaced CloudCache to RemoteCache
Moved storage constants back to storage package
moved cache interface and factory to storage package, changed remoteCache defaulting

Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-11-02 15:53:08 -07:00
peusebiu e6539290d4 test(bats): added regclient OCI artifact commands (#938) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-11-02 13:05:18 -07:00
Catalin-George Hofnar 11ec261df6 refactor: changed github issue templates to yml form (#949) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-11-01 11:28:34 -07:00
Ramkumar Chinchani 8b345f0b27 chore(deps): fix dependabot alerts (#945) 
https://github.com/project-zot/zot/pull/939
https://github.com/project-zot/zot/pull/940
https://github.com/project-zot/zot/pull/941
https://github.com/project-zot/zot/pull/942

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-11-01 11:15:26 -07:00
Nicol c72b4fb643 test: Add cosign and notations bats tests (#929) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2022-11-01 09:16:14 -07:00
peusebiu 2d877aaea1 fix(sync): also sync on demand digests, not only tags, closes #902 (#932) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-10-27 09:39:59 -07:00
Catalin-George Hofnar c6ffbce6cf refactor(tests): removed globals from digest test, removed some more hardcoded digests (#923) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-26 19:14:16 +03:00
Ramkumar Chinchani 4edecbb429 chore(deps): fix dependabot alerts (#919) 
https://github.com/project-zot/zot/pull/911
https://github.com/project-zot/zot/pull/912
https://github.com/project-zot/zot/pull/913
https://github.com/project-zot/zot/pull/914
https://github.com/project-zot/zot/pull/915
https://github.com/project-zot/zot/pull/916
https://github.com/project-zot/zot/pull/917

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-24 15:18:48 -07:00
Andrei Aaron 92afd86cbb feat(cve): better distinguish max severity on an image (#918) 
Values returned now by GetCVESummaryForImage
// not scannable / error during scan  - max severity ""            - cve count 0   - Errors
// scannable no issues found          - max severity "NONE"        - cve count 0   - no Errors
// scannable issues found             - max severity from Scanner  - cve count >0  - no Errors

Before this change the max severity in case #1 and #2 was "UNKNOWN" which is also possible value
for case #3. To better distinguish them return different max severities.

This feature would be consumed by the UI.

Signed-off-by: Andrei Aaron <andaaron@cisco.com>
 2022-10-24 12:27:26 -07:00
Andrei Aaron 1d9c88c313 fix(cli): do not show signatures and fix tls verification client side (#904) 
Issues fixed:
- the cli calls reaching out to the catalog endpoint used to request signature manifests
- resty was used instead of the cli http client to check if the discovery api was available
but it did not take into account TLS verification configuration
(testing locally withself-signed certificates did not work)

(cherry picked from commit ca42031ae9b1ceb459f5cd4f86cb82b3c9f78157)
Signed-off-by: Andrei Aaron <andaaron@cisco.com>
v1.4.3-rc4 		2022-10-22 23:44:20 -07:00