github/zot
1
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2026-06-16 04:17:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
589 Commits 38 Branches 132 Tags
91dd5496fcdd92a1c3d752d6f68a027eba894ca9
Commit Graph

589 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
peusebiu 91dd5496fc chore: rename search route prefix (#887) 
* chore: rename search route prefix

* chore: use builtin time.Duration.Truncate() on latencies

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-10-18 20:46:06 -07:00
Catalin Hofnar caf88ddb1e refactor(tests): remove hardcoded digests (#871) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-18 20:43:56 -07:00
Ramkumar Chinchani 7d08985f75 chore(deps): fix dependabot alerts (#885) 
https://github.com/project-zot/zot/pull/879
https://github.com/project-zot/zot/pull/880
https://github.com/project-zot/zot/pull/881
https://github.com/project-zot/zot/pull/882

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-18 10:06:14 +03:00
Catalin Hofnar 794a4aabd3 fix(workflow): add fetch depth, removed running at release (#873) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-17 10:41:53 -07:00
Ramkumar Chinchani 14954596cb ci: fix image build/release workflow (#874) 
Fix typo in the workflow.
Pass RELEASE_TAG env var.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-15 11:14:15 +03:00
peusebiu fd87a22829 fix(storage): resolve cache/storage inconsistencies on HEAD request (#794) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
v1.4.3-rc3 		2022-10-11 10:05:39 -07:00
Catalin Hofnar f3b1913fbd build: add commit hash to Config at build for proper discovery readme (#854) 
* build: add commit hash to Config at build for proper discovery readme link

* fix: use tag instead of commit hash, add to release build

Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-11 09:01:59 -07:00
Lisca Ana-Roberta 4bc7a2c824 fix: images command not truncating image name/tag (#851) 
Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>
 2022-10-11 08:56:03 -07:00
Andrei Aaron 815366024b fix(lastUpdated): fix image lastUpdated timestamp logic (#863) 
The lastUpdated field was picked from the first entry in image history
Now it is the created time of the image, or the last entry in
image history, if created time is unavailable

Signed-off-by: Andrei Aaron <andaaron@cisco.com>
 2022-10-10 17:43:05 -07:00
Ramkumar Chinchani 5494208556 chore(deps): fix dependabot alerts (#868) 
https://github.com/project-zot/zot/pull/864
https://github.com/project-zot/zot/pull/865
https://github.com/project-zot/zot/pull/866

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-10 12:19:05 -07:00
Andrei Aaron 98854337ff build(tags): remove redundant build tag ui_base (#857) 
It was not used for UI, it had become a CLI dependency
with the same functionality as search

Signed-off-by: Andrei Aaron <andaaron@cisco.com>
 2022-10-10 15:05:55 +03:00
Andrei Aaron 1afc5c8c3f test(authz): add an extra test for authz (#859) 
Should help with test flakiness
(the order in which the policies are read from the map impacted tested codepath)

Signed-off-by: Andrei Aaron <andaaron@cisco.com>

Signed-off-by: Andrei Aaron <andaaron@cisco.com>
 2022-10-07 15:31:18 +03:00
Catalin Hofnar 261615c880 fix: incorrect path for playground template (#858) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-07 11:29:11 +03:00
Catalin Hofnar 9916449d88 ci(workflows): changed ci-cd workflow to generate introspection json when gql schema changed (#810) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-06 12:17:41 -07:00
peusebiu 3c0c51fcbe fix(sync): also sync image index mediatype (#847) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
v1.4.3-rc2 		2022-10-06 09:41:16 -07:00
Catalin Hofnar ffc9929c1a feat(GraphQL): playground, served by zot in specific binary (#753) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-05 12:56:41 -07:00
peusebiu c146448f01 fix(sync): revert code which removed image destination feature (#840) 
Added an end to end test for this feature, closes #793

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-10-05 11:03:24 -07:00
Nicol 33a431ef43 Update go version to 1.19 (#829) 
* ci: Update go version to 1.19

Signed-off-by: Nicol Draghici <idraghic@cisco.com>

* ci: Fix lint issues

Signed-off-by: Nicol Draghici <idraghic@cisco.com>

* ci: Added needprivileges to lint, made needprivileges pass lint

Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
Signed-off-by: Nicol Draghici <idraghic@cisco.com>

Signed-off-by: Nicol Draghici <idraghic@cisco.com>
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
Co-authored-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-05 13:21:14 +03:00
Ramkumar Chinchani 50aacb6e07 fix(license-check): also account for another result condition (#848) 
Earlier checks did not report non-golang code dependencies. Now they do,
so account for that.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-04 13:36:19 -07:00
Ramkumar Chinchani 65df973f70 fix(ci/cd): update the commit msg checker settings (#846) 
Update the checker to check for length limits and against all commits.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-04 09:56:07 +03:00
Ramkumar Chinchani f235f88426 chore(deps): update dependabot dependency update alerts (#845) 
https://github.com/project-zot/zot/pull/819
https://github.com/project-zot/zot/pull/841
https://github.com/project-zot/zot/pull/842
https://github.com/project-zot/zot/pull/843
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-10-03 14:33:52 -07:00
Catalin Hofnar bd9e6fc7e3 Removed swagger requirement from binary-minimal and binary (#838) 
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
 2022-10-03 09:53:44 -07:00
Ramkumar Chinchani f658ef66ee style(ci/cd): add a commit msg style checker (#796) 
https://www.conventionalcommits.org/en/v1.0.0-beta.4/#summary

The commit message should be structured as follows:

<type>[optional scope]: <description>

[optional body]

[optional footer]

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-30 16:08:23 -07:00
peusebiu 8237f8d20a storage: Move common code in helper functions, closes #730 (#820) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-09-30 10:35:16 -07:00
Bogdan Bivolaru 67294cc669 Add graphql query for retrieving imgSummary based on repo:tag image id. (#814) 
Refactor Image GqlResolver to better suit GetManifest.
Changed GetManifest to also return digest.

Signed-off-by: Bogdan BIVOLARU <104334+bogdanbiv@users.noreply.github.com>
 2022-09-30 10:32:32 -07:00
LaurentiuNiculae 885f139e0e Remove forking logger (#825) 
- no longer needed, the race conditions were fixed

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2022-09-29 13:28:39 -07:00
Andrei Aaron e0d808b196 Include image vulnerability information in ImageSummary (#798) 
Return this data as part of GlobalSearch and RepoListWithNewestImage
query results.
This commit also includes refactoring of the CVE scanning logic in
order to better encapsulate trivy specific logic, remove CVE scanning
logic from the graphql resolver.

Signed-off-by: Andrei Aaron <andaaron@cisco.com>
 2022-09-28 11:39:54 -07:00
Ramkumar Chinchani 69753aa39a add sponsors info (#828) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-27 19:57:52 -07:00
Andreea Lupu 5ef023dbc1 add enable/disable option for scrub extension (#827) 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2022-09-27 18:06:50 -07:00
Ramkumar Chinchani 18d17f5d4c also sync golang 1.19 (#826) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
v1.4.3-rc1 		2022-09-27 11:31:54 -07:00
LaurentiuNiculae b9d878e013 Fix logger race condition (#817) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2022-09-26 18:18:28 +03:00
Nicol 6b1d8925c2 Validate Annotations present in image manifest and fallback to annotations in the config if not available (#790) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2022-09-23 09:28:30 -07:00
Lisca Ana-Roberta 1bad90bb9d add debug flag for zli commands (#785) 
Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>

Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>
 2022-09-23 09:24:01 -07:00
Lisca Ana-Roberta 0f7b174fc0 Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com> (#713) 
list all images that have are base images for the given image + zli command

Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>
 2022-09-23 09:23:31 -07:00
Ramkumar Chinchani 944ae66844 fix incorrect http transport to work with proxies (#802) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-23 11:16:35 +03:00
Andreea Lupu f686ab6bf6 initial design for task scheduler (#700) 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2022-09-22 22:27:56 -07:00
Andrei Aaron 7517f2a5bb list all images that have all layers of the base image included (2) (#813) 
* list all images that are base images for the given image + zli command

Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>

* Fix a failing test

The test expected the image size to be the size of the layer, not the manifest+config+layer

Signed-off-by: Andrei Aaron <andaaron@cisco.com>

Signed-off-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>
Signed-off-by: Andrei Aaron <andaaron@cisco.com>
Co-authored-by: Lisca Ana-Roberta <ana.kagome@yahoo.com>
 2022-09-22 22:08:58 +03:00
Ramkumar Chinchani b919279eef dco: enable DCO checks only on PRs (#812) 
GitHub allows a "Squash and Merge" model which does an automatic rebase
but commit GPG signature is from GitHub. So disable DCO checks only when
merging.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-22 20:13:53 +03:00
Ramkumar Chinchani 04da7fb1b7 fix dependabot alerts (#809) 
https://github.com/project-zot/zot/pull/805

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-22 11:27:55 +03:00
Ramkumar Chinchani e5decaa47e fix dependabot alerts 
https://github.com/project-zot/zot/pull/800
https://github.com/project-zot/zot/pull/801
https://github.com/project-zot/zot/pull/805

https://github.com/project-zot/zot/security/dependabot/26
https://github.com/project-zot/zot/security/dependabot/30

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-21 16:07:04 -07:00
Alex Stan 42c947fa03 Enrich ImageSummary with a new field representing image History 
Closing #748

Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
 2022-09-21 12:50:11 -07:00
Ramkumar Chinchani 7804ba7ce0 fix dependabot alerts (#795) 
https://github.com/project-zot/zot/pull/778
https://github.com/project-zot/zot/pull/780
https://github.com/project-zot/zot/pull/781
https://github.com/project-zot/zot/pull/782
https://github.com/project-zot/zot/security/dependabot/27
https://github.com/project-zot/zot/security/dependabot/29

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-21 10:04:08 +03:00
Ramkumar Chinchani 3cf7cccf50 update presentation links 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-20 17:20:15 -07:00
Petu Eusebiu 601e4fcad4 graphql: Populate ImageSummary missing fields: 
Description, Labels, Licenses, Title, Documentation, Source

closes #786

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-09-20 11:04:45 -07:00
Ramkumar Chinchani 19410e20e5 update README.md for release 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
v1.4.2 		2022-09-15 23:15:57 -07:00
Ramkumar Chinchani 90c8390c29 routes: support resumable pull 
Some embedded clients use the "Range" header for blob pulls in order to
resume downloads.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
v1.4.2-rc6 		2022-09-15 15:51:47 -07:00
Petu Eusebiu 7912b6a3fb Refactor s3 dedupe 
Under digest bucket create 2 buckets, one for storing origin blob
and one for storing deduped blobs.

PutBlob() - puts an origin blob in both buckets
          - puts a deduped blob in deduped bucket
GetBlob() - returns blobs only from origin bucket
DeleteBlob() - deletes an origin blob from both buckets
             and moves one deduped blob into origin bucket
             - deletes a deduped blob from deduped bucket

[storage] When deleting an origin blob, next time we GetBlob() we get a
deduped blob with no content and we will move the content from
the deleted origin blob to it (inside s3.go).

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-09-14 14:43:58 -07:00
Ramkumar Chinchani f3faae0e09 report listening port when chosen by kernel (#770) 
Based off of the PR by @thesayyn
https://github.com/project-zot/zot/pull/720

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-09 08:41:13 +03:00
Ramkumar Chinchani d68bbf6743 fix security alerts from artifacthub 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2022-09-08 09:24:33 +03:00
peusebiu 5479e2c785 s3: fix dedupe failing to manage blobs correctly (#772) 
in order to know which blob is 'real' (has content)
we need to know which was the first blob inserted in cache,
because that is always the real one.

because we can not modify the keys order in boltdb we'll do this
by marking the first blob inserted with a value

when GetBlob() return the blob which is marked
when PutBlob() if is the first one, mark it
when DeleteBlob() in case deleted is marked then mark the next blob

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2022-09-08 01:12:14 +03:00