kubewarden / helm-charts

Helm charts for the Kubewarden project
Apache License 2.0
25 stars 17 forks source link

chore(deps): update all non-major dependencies #380

Closed renovate[bot] closed 7 months ago

renovate[bot] commented 8 months ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
ghcr.io/kyverno/policy-reporter minor 2.17.5 -> 2.18.0
policy-reporter (source) minor 2.21.6 -> 2.22.0
sigstore/cosign-installer action minor v3.3.0 -> v3.4.0
updatecli/updatecli-action action minor v2.53.0 -> v2.54.0

[!WARNING] Some dependencies could not be looked up. Check the Dependency Dashboard for more information.


Release Notes

kyverno/policy-reporter (policy-reporter) ### [`v2.22.0`](https://togithub.com/kyverno/policy-reporter/blob/HEAD/CHANGELOG.md#2220) [Compare Source](https://togithub.com/kyverno/policy-reporter/compare/policy-reporter-2.21.6...policy-reporter-2.22.0) - Helm Chart - Policy Reporter v2.18.0 - Support HTTP BasicAuth for Loki \[[#​394](https://togithub.com/kyverno/policy-reporter/pull/394) by [YannickTeKulve](https://togithub.com/YannickTeKulve)] - Update README Targets and Links \[[#​396](https://togithub.com/kyverno/policy-reporter/pull/396) by [vponoikoait](https://togithub.com/vponoikoait)] - AccoundID for SecurityHub is now optional if IRSA is used. - Removed unused from config.yaml. Stream name isn't a property of SecurityHub \[[#​403](https://togithub.com/kyverno/policy-reporter/pull/403) by [vponoikoait](https://togithub.com/vponoikoait)] - Support `certificate` and `skipTLS` configuration for SMTP Client configuration. - Policy Reporter Kyverno Plugin v1.6.3 - Fix HTML Report Details - Monitoring Chart - Add Rule filter to Grafana PolicyReport Details Dashboard \[[#​399](https://togithub.com/kyverno/policy-reporter/pull/399) by [lukashankeln](https://togithub.com/lukashankeln)]
sigstore/cosign-installer (sigstore/cosign-installer) ### [`v3.4.0`](https://togithub.com/sigstore/cosign-installer/releases/tag/v3.4.0) [Compare Source](https://togithub.com/sigstore/cosign-installer/compare/v3.3.0...v3.4.0) #### What's Changed - Use examples that work with multiple tags by [@​jkreileder](https://togithub.com/jkreileder) in [https://github.com/sigstore/cosign-installer/pull/155](https://togithub.com/sigstore/cosign-installer/pull/155) - default cosign install to release v2.2.3 by [@​cpanato](https://togithub.com/cpanato) in [https://github.com/sigstore/cosign-installer/pull/156](https://togithub.com/sigstore/cosign-installer/pull/156) #### New Contributors - [@​jkreileder](https://togithub.com/jkreileder) made their first contribution in [https://github.com/sigstore/cosign-installer/pull/155](https://togithub.com/sigstore/cosign-installer/pull/155) **Full Changelog**: https://github.com/sigstore/cosign-installer/compare/v3...v3.4.0
updatecli/updatecli-action (updatecli/updatecli-action) ### [`v2.54.0`](https://togithub.com/updatecli/updatecli-action/releases/tag/v2.54.0): 🌈 [Compare Source](https://togithub.com/updatecli/updatecli-action/compare/v2.53.0...v2.54.0) ##### Changes - Bump updatecli version to v0.72.0 [@​github-actions](https://togithub.com/github-actions) ([#​498](https://togithub.com/updatecli/updatecli-action/issues/498)) ##### Contributors [@​github-actions](https://togithub.com/github-actions) and [@​github-actions](https://togithub.com/github-actions)\[bot]

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.



This PR has been generated by Mend Renovate. View repository job log here.

flavio commented 8 months ago

@kravciak do we have some automated tests covering the functionality of policy-reporter?

renovate[bot] commented 8 months ago

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

âš  Warning: custom changes will be lost.

flavio commented 8 months ago

@viccuad I think we forgot about this PR. What should we do with it?

viccuad commented 7 months ago

Needs to be tested against audit-scanner, to see if the policy-reporter ui upstream bump works fine for us.

viccuad commented 7 months ago

Performed smoke tests by deploying kubewarden-controller from this PR, kubewarden-defaults from 1.11-rc3, with policy-reporter enabled, on a cluster with several violating resources, as follows:

helm upgrade -i --wait --namespace kubewarden --create-namespace kubewarden-controller ./charts/kubewarden-controller --set auditScanner.cronJob.schedule="*/2 * * * *" --set auditScanner.policyReporter=true

All fine, merging.