github/zot
1
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2026-06-16 12:28:01 +08:00
Code Issues Packages Projects Releases Wiki Activity
870 Commits 38 Branches 132 Tags
b22989cfe07ddc764eddcecef8ea8822c828248c
Commit Graph

154 Commits

Author SHA1 Message Date
peusebiu 49e4d93f42 fix(test): TestConfigReloader, wait for trivy db download (#1543) 
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
 2023-07-06 14:17:49 +03:00
LaurentiuNiculae 0a04b2a4ed feat(cve): implemented trivy image scan for multiarch images (#1510) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-07-06 11:36:26 +03:00
LaurentiuNiculae 96d9d318df feat(referrers): added index support for referrers queries (#1560) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-07-05 09:42:16 -07:00
Andrei Aaron 7fee57e7cc fix(CVE): attempt to scan now returns early with an error if trivyDB metadata json is missing (#1548) 
Also modify zli to retry in case of such errors,
assuming the trivyDB will eventually be downloaded by the scheduled task.

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
 2023-07-05 09:08:16 -07:00
alexstan12 ea7dbf9e5c refactor: move helper functions under common, in usage specific named files (#1540) 
Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
 2023-06-22 14:29:45 +03:00
Ramkumar Chinchani 4d6ca493f2 chore: fix dependabot alerts (#1501) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-06-09 10:27:42 -07:00
Andrei Aaron 96d00cd0ef fix(cve): Fix CVE scanning in images containing Jar files (#1475) 2023-06-01 00:37:46 +03:00
LaurentiuNiculae a3f355c278 refactor(storage): refactoring storage (#1459) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-05-26 11:08:19 -07:00
Lisca Ana-Roberta 6a7035c599 fix: removed duplicate structures from service.go and moved them to pkg/common (#1436) 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
 2023-05-25 11:27:49 -07:00
Andreea Lupu 970997f3a8 feat(graphql & repodb): add info about signature validity (#1344) 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2023-05-24 09:46:16 -07:00
Ramkumar Chinchani 83ae1aad70 chore(go.mod): fix dependabot alerts (#1466) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-05-23 10:14:43 +03:00
Ramkumar Chinchani 2be5459c8e chore: fix dependabot alerts (#1458) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-05-17 00:37:34 -07:00
LaurentiuNiculae f4501e6b6b feat(search): add artifact type to manifest summary gql structure (#1448) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-05-15 10:44:49 -07:00
LaurentiuNiculae 7d7bc9d5e4 feat(api): added oci-subject header when pushing an image with subject field (#1415) 
- as requested by the latest version of the oci distribution spec

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-05-12 09:32:01 -07:00
LaurentiuNiculae ea79be64da refactor(artifact): remove oci artifact support (#1359) 
* refactor(artifact): remove oci artifact support
- add header to referrers call to indicated applied artifact type filters

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

* feat(gc): simplify gc logic to increase coverage

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

---------

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-05-10 10:15:33 -07:00
LaurentiuNiculae 449f0d0ac3 fix(repoinfo): fix userprefs values for repos returned by expanded repo info (#1413) 
- now isBookmarked and isStarred are updated correctly

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-05-04 09:51:21 -07:00
Ramkumar Chinchani 42df4c505a chore: fix dependabot alerts (#1403) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-05-01 12:49:10 -07:00
Nicol c169698c95 feat: remove usage of zerolog.Logger.Msgf() from zot code (#1382) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-04-27 19:44:22 -07:00
Andreea Lupu 40bf76add5 chore(go.mod): upgrade trivy and cosign (#1387) 
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
 2023-04-27 09:35:10 -07:00
LaurentiuNiculae 3d8a4022bd feat(global-search): add filtering options by starred and bookmarked (#1336) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-04-27 08:11:13 -07:00
Ramkumar Chinchani 635d07ae04 chore: update golang (to 1.20.x) and golangci-linter (#1388) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-04-27 00:09:46 -07:00
LaurentiuNiculae 9cc990d7ca feat(repodb): add user related information to repodb (#1317) 
Initial code was contributed by Bogdan BIVOLARU <104334+bogdanbiv@users.noreply.github.com>
Moved implementation from a separate db to repodb by Andrei Aaron <aaaron@luxoft.com>

Not done yet:
- run/test dynamodb implementation, only boltdb was tested
- add additional coverage for existing functionality
- add web-based APIs to toggle the stars/bookmarks on/off

Initially graphql mutation was discussed for the missing API but
we decided REST endpoints would be better suited for configuration



feat(userdb): complete functionality for userdb integration

- dynamodb rollback changes to user starred repos in case increasing the total star count fails
- dynamodb increment/decrement repostars in repometa when user stars/unstars a repo
- dynamodb check anonymous user permissions are working as intendend
- common test handle anonymous users
- RepoMeta2RepoSummary set IsStarred and IsBookmarked



feat(userdb): rest api calls for toggling stars/bookmarks on/off



test(userdb): blackbox tests



test(userdb): move preferences tests in a different file with specific build tags



feat(repodb): add is-starred and is-bookmarked fields to repo-meta

- removed duplicated logic for determining if a repo is starred/bookmarked

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
Co-authored-by: Andrei Aaron <aaaron@luxoft.com>
 2023-04-24 11:13:15 -07:00
Nicol 0586c6227e refactor: remove pkg/extensions/search/common and move the code to the appropriate packages (#1358) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-04-18 11:07:47 -07:00
Ramkumar Chinchani e6b81bb354 chore(go.mod): fix dependabot alerts (#1365) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-04-12 14:10:47 +03:00
Ramkumar Chinchani 8f809bda29 chore(go.mod): fix dependabot alerts (#1351) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-04-10 14:09:54 -07:00
Nicol 3510ef0fb0 refactor: move pkg/extensions/search/common/oci_layout.go under pkg/test/ (#1325) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-04-07 09:52:26 -07:00
Andrei Aaron 06bd8a8252 chore(go.mod): fix dependabot alerts (#1333) 
upgrade to github.com/aws/aws-sdk-go@v1.44.237
upgrade to github.com/aquasecurity/trivy@v0.38.3
upgrade to oras.land/oras-go@v1.2.3
upgrade to github.com/google/go-containerregistry@v0.14.0
upgrade to github.com/moby/buildkit@v0.11.4

Note we can't switch to trivy 0.39.0 as well as some other updates
because they would also require upgrade of cosign to v2 with
breaking api changes

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
 2023-04-06 01:00:12 -07:00
LaurentiuNiculae 0ae35e973a test(convert): added test for consistent coverage for update last-updated timestamp function (#1299) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-29 17:39:15 +03:00
LaurentiuNiculae af819e7b76 refactor(repodb): moving common utilities under pkg/meta (#1292) 
* refactor(repodb): moving common utilities under pkg/meta

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

* refactor(repodb): moved update, version components under pkg/meta

- updated wrapper initialization to recieve a log object in constructor

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

* refactor(repodb): moved repodb initialization from controller to pkg/meta/repodb

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

---------

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-28 10:20:09 -07:00
Ramkumar Chinchani 917159143c chore: fix dependabot alerts (#1312) 
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
 2023-03-27 12:16:29 -07:00
Nicol ceda13c24e chore(deps): remove unused package pkg/extensions/search/digest (#1298) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-03-24 14:32:02 +02:00
LaurentiuNiculae f8a77bc42f feat(search): update search pattern matching rules (#1257) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-22 10:31:53 -07:00
LaurentiuNiculae 21b7c69fd9 feat(cli): updated display format for multiarch images (#1268) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-21 10:16:00 -07:00
LaurentiuNiculae 0036d6dd09 test(referrers): add test for getting referrers for a image index, multiarch-image, using gql (#1282) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-21 15:10:50 +02:00
LaurentiuNiculae ed01292ad2 feat(search): add referrers field to ImageSummary (#1261) 
Changed repodb to store more information about the referrer needed for the referrers query

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-20 09:14:17 -07:00
Lisca Ana-Roberta eea6f3f85a fix(cve): Search by CVE title/id (full or partial) when listing an image's CVEs (#1264) 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
 2023-03-16 12:13:07 -07:00
LaurentiuNiculae 150ee88945 fix(repodb): GQL request for ExpandedRepoInfo errors when artifacts with tags are present (#1265) 
If we push an artifact and give it a tag, repodb would crash because of the null pointer dereferencing

Now when iterating over the tags of a repo and stumbling upon a unsupported media type, it's being ignored

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-15 10:34:48 -07:00
Nicol Draghici 6f0c37079c chore(deps): remove usage of deprecated package pkg/errors 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-03-14 10:46:29 -07:00
LaurentiuNiculae 5d1f91a79f feat(repodb): update referrers api to use repodb (#1230) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-10 10:37:29 -08:00
LaurentiuNiculae 4c156234cb feat(repodb): sync-repodb WIP (#1241) 
Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-03-09 10:41:48 -08:00
Andrei Aaron 73b1126bbf chore(go.mod): fix dependabot alerts (#1247) 
Supersedes:
- https://github.com/project-zot/zot/pull/1132
- https://github.com/project-zot/zot/pull/1243
- https://github.com/project-zot/zot/pull/1244
- https://github.com/project-zot/zot/pull/1245

Also update the AWS SDK libraries used

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
 2023-03-06 11:05:19 -08:00
Nicol 23efe24c72 refactor(test): update cve tests to stop duplicating test/data if not needed (#1232) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-03-02 09:45:23 -08:00
Lisca Ana-Roberta 6bbf730061 fix: trivydb update now uses task scheduler (#1204) 
Signed-off-by: Ana-Roberta Lisca <ana.kagome@yahoo.com>
 2023-03-02 09:43:54 -08:00
LaurentiuNiculae d62c09e2cc feat(repodb): Multiarch Image support (#1147) 
* feat(repodb): index logic + tests

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

* feat(cli): printing indexes support using the rest api

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

---------

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>
 2023-02-27 11:23:18 -08:00
Nicol a561d0bad5 refactor(test): remove unnecessary usage of images copied from under test/data (#1217) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-02-24 14:22:47 -08:00
Andrei Aaron 792f3f55b3 feat(graphql): Image() call now returns a non-nullable ImageSummary (#1216) 
This is for consistency with the other calls, and should help in making
all ZUI handling of ZOT errors consistent

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
 2023-02-24 12:22:01 -08:00
Nicol f00a9e6e48 perf: update the ImageList queries to return PaginatedImagesResult (#1182) 
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
 2023-02-15 11:34:07 -08:00
Andreea Lupu ee95ab0ffc fix: call notation-go libs instead of using notation binary (#1104) 
fix: add loading notation path

Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
Co-authored-by: Roxana Nemulescu <roxana.nemulescu@gmail.com>
 2023-02-13 10:43:52 -08:00
Andrei Aaron d12836e69c refactor(cve): improve CVE test time by mocking trivy (#1184) 
- refactor(cve): remove the global of type cveinfo.CveInfo from the extensions package
  Replace it with an attribute on controller level
- refactor(controller): extract initialization logic from controller.Run()
- test(cve): mock cve scanner in cli tests

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
 2023-02-09 21:04:52 -08:00
Andrei Aaron 3676c5889e test: avoid running trivy tests if search build label is missing (#1172) 
The 'test' makefile target runs the tests for both 'minimal' and equivalent of the former 'extended' build.
The trivy package tests were run twice, even if the trivy logic is unreachable if search is disabled.
With this update we should see a cut of about 150s of test time.

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
 2023-02-04 23:21:45 -08:00