upstream/harbor
1
0
Fork 0
mirror of https://github.com/goharbor/harbor synced 2024-09-20 17:45:44 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,193 Commits 51 Branches 310 Tags 355 MiB
9b0ac30142
Commit Graph

289 Commits

Author SHA1 Message Date
Shengwen YU
1f11cf58b9
feat: bump-up trivyVersion to v0.37.2, trivyAdapterVersion to v0.30.7 (#18217) (#18222) 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2023-02-15 10:19:54 +08:00
MinerYang
f48f3f4c09
bump up release-2.5.0 golang to 1.18.9 (#18069) 
Signed-off-by: yminer <yminer@vmware.com>

set GO111MODULE=auto in ut_install

bump mockery to v2.14.0

fix lint

fix whitespace
 2023-01-09 10:11:10 +08:00
Shengwen YU
b77d3aa153
[Cherry-pick] Bump up TRIVYADAPTERVERSION to v0.30.6 (#18056) 
Bump up TRIVYADAPTERVERSION to v0.30.6

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2023-01-04 15:42:28 +08:00
Shengwen YU
5f0d222543
[Cherry-pick] fix: upgrade TRIVYADAPTERVERSION to v0.30.5 (#18005) 
fix: upgrade TRIVYADAPTERVERSION to v0.30.5

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2022-12-16 10:40:10 +08:00
Shengwen YU
bcabc88d38
[Cherry-pick] fix: upgrade trivy version to v0.35.0 and trivy-adapter version to v0.30.3 (#17979) 
fix: upgrade trivy version to v0.35.0 and trivy-adapter version to v0.30.3

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2022-12-13 18:24:43 +08:00
MinerYang
c8d467b616
bumpup golang to v1.17.13 (#17309) 
Signed-off-by: yminer <yminer@vmware.com>
 2022-08-03 17:44:35 +08:00
Shengwen YU
86056cab75
[Cherry-Pick] fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0 (#17072) 
fix: bump trivy version to v0.29.2 and bump trivyadapter version to v0.30.0

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2022-06-24 19:17:41 +08:00
Daniel Pacak
1081707db6 chore(deps): bump Trivy adapter from v0.26.0 to v0.28.0 (#16729) 
Trivy replaced the --version flag with version subcommand.

Resolves: #16554
Resolves: #16555

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
 2022-05-09 15:12:45 +08:00
Yang Jiao
faf5d1cf60 Bump TRIVYVERSION to v0.24.2 and bump TRIVYADAPTERVERSION to v0.26.0 
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
 2022-03-08 06:51:34 +00:00
MinerYang
74d2670616
bump up Go version to 1.17.7 (#16415) 
Signed-off-by: yminer <yminer@vmmware.com>

update CONTRIBUTING.md 2.4 golang version to 1.17.7

Signed-off-by: yminer <yminer@vmmware.com>

Co-authored-by: yminer <yminer@vmmware.com>
 2022-02-25 17:23:18 +08:00
Wang Yan
6c3f9a8366
bump up distribution version to v2.8 (#16338) 
Signed-off-by: Wang Yan <wangyan@vmware.com>
 2022-02-10 11:46:58 +08:00
Shengwen YU
0bf5998f96
upgrade Chartmuseum to v0.14.0 (#16334) 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Co-authored-by: Shengwen Yu <yshengwen@vmware.com>
 2022-02-09 12:13:05 +08:00
He Weiwei
0b089a16be
Bump up spectral to v6.1.0 (#16263) 
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2022-01-24 14:05:37 +08:00
Shengwen Yu
46f97ecf6c feat: bump TRIVYVERSION to v0.22.0 and bump TRIVYADAPTERVERSION to v0.25.0 
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
 2022-01-21 09:14:07 +08:00
Morlay
9ad68aa526
Updates goharbor to var IMAGENAMESPACE in Makefiles to make injectable (#15218) 
Signed-off-by: Morlay <morlay.null@gmail.com>
 2022-01-20 12:14:29 +08:00
yminer
9acf3d21ce bump up go version to v1.17.6 
Signed-off-by: yminer <yminer@vmmware.com>
 2022-01-17 17:45:22 +00:00
He Weiwei
4037a478a9
chore: bump up trivy adapter to v0.24.0 (#15872) 
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-10-25 18:48:08 +08:00
Wang Yan
a956758302
bump up go version to v1.17 (#15865) 
* bump up go version to v1.17

Signed-off-by: Wang Yan <wangyan@vmware.com>

* gofmt fail

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-10-25 17:28:29 +08:00
He Weiwei
619d3e818c feat: bump up trivy adater to v0.23.0 
Closes #14983

Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-10-22 09:07:40 +00:00
Steven Zou
93e644119d
Merge pull request #15219 from danielpacak/bump_up_trivy_adapter_to_v0.20.0 
chore(trivy): Bump up Trivy adapter from v0.19.0 to v0.20.0
 2021-09-29 09:09:52 +08:00
Wang Yan
dbcbc8bad0
bump up go to v1.16.7 (#15564) 
Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-09-09 17:58:00 +08:00
armandxu
a8562b2934
wrong word (#15187) 
Signed-off-by: armandxu <936215300@qq.com>
 2021-08-24 15:09:41 +08:00
Wang Yan
494d74d32d
bump up go version to 1.16 (#15286) 
Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-07-08 16:25:15 +08:00
Daniel Pacak
530855e9ad chore(trivy): Bump up Trivy adapter from v0.19.0 to v0.20.0 
This version of the adapter service wraps Trivy v0.18.3
that supports Go dependency scanning and various other
improvements.

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
 2021-06-29 08:24:54 +02:00
danfengliu
f367aad760 Fix issue of missing db base build process in build base workflow 
There is extra build step for db base image building since v2.3, so this
step should be added back.

Signed-off-by: danfengliu <danfengl@vmware.com>
 2021-06-16 15:22:32 +08:00
danfengliu
d66ea07c2f Refind build base process in Makefile 
Remove build base executable in Makefile by replacing it as an input parameter.
Add add more input parameters for controlling docker pull/push to make
build base process flexible for users.

Signed-off-by: danfengliu <danfengl@vmware.com>
 2021-06-03 14:48:34 +08:00
Wang Yan
66b8a8f8dd
add build arch parameter in Makefile (#14995) 
* add build arch parameter in Makefile

Add parameter BUILDARCH for make file. DB base builds pg96 for x86_64 only

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-06-01 10:38:05 +08:00
danfengliu
344e51d2c6 Fix build base workflow issues 
Signed-off-by: danfengliu <danfengl@vmware.com>
 2021-05-25 18:13:15 +08:00
danfengliu
6c14e699b1
Merge pull request #14844 from danfengliu/fix-notary-trust-directory-issue-in-nightly 
Fix notary trust directory issue in nightly
 2021-05-20 21:56:27 +08:00
danfengliu
3ef4dc17fc Fix notary trust directory issue and add login for each base image in makefile 
1. Use root instead of ~ in notary parameter;
2. Fix tag immutability issue caused by GUI change;
3. Replace email domain name to harbor test;
4. Add login for each base image in makefile;
5. Add customize look test in nightly.

Signed-off-by: danfengliu <danfengl@vmware.com>
 2021-05-20 18:23:13 +08:00
Wang Yan
86185989cf
support pg upgrade (#14846) 
1, use the pg source and photon spec to build postgres 9.6
2, install 9.6 on the photon 4.0
3, then leverage pg_upgrade to handle the pg major version migration

Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-05-20 16:25:50 +08:00
He Weiwei
c6bd7b2ec2
ci: lint the swagger file (#14916) 
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-05-19 10:36:09 +08:00
Wang Yan
0fb520a33b bump up go to v1.15.12 
Signed-off-by: Wang Yan <wangyan@vmware.com>
 2021-05-14 15:36:23 +08:00
Daniel Pacak
7e6235bd3b
chore(trivy): Bump up Trivy scanner adapter to v0.19.0 (#14797) 
Trivy scanner adpater v0.19.0 comes with Trivy v0.17
which adds support for Java JAR/WAR/EAR archives and
Go binaries scanning.

The release notes are published on
https://github.com/aquasecurity/trivy/releases/tag/v0.17.0

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
 2021-05-14 10:30:17 +08:00
DQ
04ba4a4033 Upgrade chartmuseum version 
from 1.12.0 to 1.13.1

Signed-off-by: DQ <dengq@vmware.com>
 2021-05-11 13:51:55 +00:00
danfengliu
81b26418c1
Fix build base related issues (#14733) 
1. Add build base image step in build package git action workflow;
2. Add build base step to UT test in CI, base image used by UI test should be built before building harbor image in the same runtime;
3. In build package workflow, trigger build base image step in condition of changing both in
Dockerfile.base and VERSION;
4. Add tag for setup nightly test.

Signed-off-by: danfengliu <danfengl@vmware.com>
 2021-04-23 11:55:30 +08:00
Daniel Jiang
c701ce09fa
Merge pull request #14681 from bitsf/fix_typo_NOTARYURL 
Fixed typo in NOTARYURL variable name
 2021-04-21 17:38:01 +08:00
He Weiwei
c58ccdfb8c
feat: bump up go-swagger to v0.25.0 (#14703) 
Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-04-21 11:07:10 +08:00
Ziming Zhang
39f70287b4 Fixed typo in NOTARYURL variable name 
Signed-off-by: Ziming Zhang <zziming@vmware.com>
 2021-04-17 15:55:02 +08:00
He Weiwei
dc37c83e11
refactor: use singular as the tag for user APIs (#14654) 
Use singular as the tag for user APIs to align with other APIs.

Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2021-04-15 10:52:48 +08:00
DQ
f5fcc7bd31 Add base image for exporter 
* Add base
* update Makefile

Signed-off-by: DQ <dengq@vmware.com>
 2021-03-25 16:35:57 +08:00
danfengliu
9e3f0de12c
Merge pull request #14124 from danfengliu/reschedule-docker-login-policy-in-build-base-image-in-master 
Reschedule docker login policy in base image build process
 2021-02-23 10:10:59 +08:00
danfengliu
7d05c8e513 Reschedule docker login policy in base image build process 
Signed-off-by: danfengliu <danfengl@vmware.com>
 2021-02-22 10:05:25 +08:00
Josh Soref
dfe360040b Spelling 
* addition
* attribute
* auditing
* availability
* available
* bandwidth
* browser
* business
* cadence
* chartmuseum
* client
* column
* content
* demonstrate
* described
* endpoints
* facilitate
* github
* harbor
* information
* instance
* manual
* meaningful
* operation
* overridden
* password
* possible
* project
* refactor
* replication
* requires
* running
* scanned
* settings
* signup
* those
* unsigned
* vulnerability

--
Also removes trailing space from a filename

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
 2021-02-19 11:59:15 +08:00
Daniel Pacak
202342cf0c
chore: Bump up Trivy scanner adapter from v0.17.0 to v0.18.0 (#14240) 
Trivy adapter version v0.18.0 ships with Trivy v0.16.0.
It also changes the way we return links to upstream
vulnerability references. Instead of returning multiple
URLs Trivy returns the primary URL to Aqua Vulnerability
Database (e.g. https://avd.aquasec.com/nvd/cve-2020-10688/)
with up to date status and remediation guide.

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
 2021-02-18 14:40:07 +08:00
Qian Deng
a8e4b09b39
Add exporter to offline and online (#14022) 
Signed-off-by: DQ <dengq@vmware.com>
 2021-01-20 14:49:06 +08:00
Daniel Jiang
1b64b9fdc2
Bump up the go-migrate (#13914) 
Bump it up to v4.11.0 to be consistent with harbor-core

Signed-off-by: Daniel Jiang <jiangd@vmware.com>
 2021-01-11 19:08:17 +08:00
Daniel Pacak
bd46af691c
chore(trivy): Bump up Trivy scanner adapter to v0.17.0 (#13639) 
The adapter implements Pluggable Scanners API v1.1
and ships with Trivy v0.14.0.

There's also a tiny change in the way Trivy settings
are displayed in the scanner metadata response, i.e.
instead of com.github.aquasecurity.trivy.debugMode
it prints env.SCANNER_TRIVY_DEBUG_MODE. It makes it
explicit which env is use to set this parameter.

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
 2020-12-25 15:34:00 +08:00
Wang Yan
7a8a8fa104
upgrade go version to v1.15.6 (#13836) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2020-12-23 18:53:09 +08:00
He Weiwei
ce6ed3eeb7 refactor(api): move scan all apis to go-swagger 
Move scan all APIs from beego to go-swagger.

Signed-off-by: He Weiwei <hweiwei@vmware.com>
 2020-12-21 02:17:02 +00:00