Andrei Aaron
73b1126bbf
chore(go.mod): fix dependabot alerts ( #1247 )
...
Supersedes:
- https://github.com/project-zot/zot/pull/1132
- https://github.com/project-zot/zot/pull/1243
- https://github.com/project-zot/zot/pull/1244
- https://github.com/project-zot/zot/pull/1245
Also update the AWS SDK libraries used
Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
2023-03-06 11:05:19 -08:00
Andrei Aaron
fac1d1d05d
chore(trivy): update trivy version and enforce OCI compliant repo names in local image storage ( #1068 )
...
1. chore(trivy): update trivy library version
The trivy team switched github.com/urfave/cli for viper so
there are some other code changes as well.
Since we don't use github.com/urfave/cli directly in our software
we needed to add a tools.go in order for "go mod tidy" to not delete it.
See this pattern explained in:
- https://github.com/99designs/gqlgen#quick-start
- https://github.com/golang/go/wiki/Modules#how-can-i-track-tool-dependencies-for-a-module
- https://github.com/go-modules-by-example/index/blob/master/010_tools/README.md#walk-through
The jobs using "go get -u" have been updated to use "go install", since go get
modifies the go.mod by upgrading some of the packages, but downgrading trivy to an older
version with broken dependencies
2. fix(storage) Update local storage to ignore folder names not compliant with dist spec
Also updated trivy to download the DB and cache results under the rootDir/_trivy folder
3. fix(s3): one of the s3 tests was missing the skipIt call
This caused a failure when running locally without s3 being available
4. make sure the offline scanning is enabled, and zot only downloads the trivy DB
on the regular schedule, and doesn't download the DB on every image scan
ci: increase build and test timeout as tests are reaching the limit more often
Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
2023-01-18 08:24:44 -08:00
Ramkumar Chinchani
37e6c6db0e
ci: remove superfluous parts of github workflows ( #1050 )
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-12-07 12:46:50 -08:00
Ramkumar Chinchani
f9b575e1cf
chore(deps): fix dependabot alerts ( #965 )
...
https://github.com/project-zot/zot/pull/959
https://github.com/project-zot/zot/pull/960
https://github.com/project-zot/zot/pull/961
https://github.com/project-zot/zot/pull/962
https://github.com/project-zot/zot/pull/963
https://github.com/project-zot/zot/pull/964
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-11-08 00:39:06 -08:00
Nicol
33a431ef43
Update go version to 1.19 ( #829 )
...
* ci: Update go version to 1.19
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
* ci: Fix lint issues
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
* ci: Added needprivileges to lint, made needprivileges pass lint
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
Signed-off-by: Nicol Draghici <idraghic@cisco.com>
Signed-off-by: Catalin Hofnar <catalin.hofnar@gmail.com>
Co-authored-by: Catalin Hofnar <catalin.hofnar@gmail.com>
2022-10-05 13:21:14 +03:00
Roxana Nemulescu
3bccea7aa2
oras fix:
...
newer version of oras: https://github.com/oras-project/oras/releases/tag/v0.14.0
rename the --manifest-config to --config for push command
Signed-off-by: Roxana Nemulescu <roxana.nemulescu@gmail.com>
2022-08-30 21:39:16 +03:00
Andrei Aaron
5dda12b6a7
Fix syntax errors in benchmark and cluster workflows
...
Signed-off-by: Andrei Aaron <andaaron@cisco.com>
2022-08-30 19:20:56 +03:00
Roxana Nemulescu
8ed34608e4
GetCatalog() - Populate _catalog with mix of many small, medium and large images
...
Signed-off-by: Roxana Nemulescu <roxana.nemulescu@gmail.com>
2022-08-30 16:48:38 +03:00
Ramkumar Chinchani
317064ffc9
fix dependabot alerts
...
https://github.com/project-zot/zot/pull/647
https://github.com/project-zot/zot/pull/648
https://github.com/project-zot/zot/pull/649
https://github.com/project-zot/zot/pull/650
https://github.com/project-zot/zot/pull/651
https://github.com/project-zot/zot/pull/652
https://github.com/project-zot/zot/pull/653
https://github.com/project-zot/zot/pull/656
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-07-18 14:59:27 -07:00
Ramkumar Chinchani
595e1bca59
fix dependabot alerts
...
https://github.com/project-zot/zot/pull/624
https://github.com/project-zot/zot/pull/625
https://github.com/project-zot/zot/pull/626
https://github.com/project-zot/zot/pull/627
https://github.com/project-zot/zot/pull/628
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-07-15 12:03:08 -07:00
Ramkumar Chinchani
dc97096502
restrict workflow action permissions
...
Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
2022-07-13 11:34:57 -07:00
Petu Eusebiu
01d742718f
ci/cd: fix oras cli flags after it got updated
...
installing notation and oras not needed anymore
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-07-12 10:02:51 -07:00
Alex Stan
66484c8ca9
changed go version to 1.18
...
Signed-off-by: Alex Stan <alexandrustan96@yahoo.ro>
2022-06-09 04:38:06 -07:00
Petu Eusebiu
ad08c08986
cluster: use zb source ips pool to distribute requests to cluster
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-05-24 15:19:23 -07:00
Petu Eusebiu
799eab63a9
clustering: Give time to minio container to come up
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-05-18 10:35:26 -07:00
Roxana Nemulescu
efc55b013e
Add reading tests for zb binary: read-only tests and mixed read-only tests
...
Add mixed write-only tests
Add mixed read-write tests
Signed-off-by: Roxana Nemulescu <roxana.nemulescu@gmail.com>
2022-04-13 13:22:36 -07:00
Petu Eusebiu
fa27e22404
Added clustering github workflow
...
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
2022-03-09 10:54:17 -08:00