From 77855415d2611b2c042db1a08cd41af3a52e22c3 Mon Sep 17 00:00:00 2001 From: Martin Kravec Date: Thu, 4 Jan 2024 16:15:03 +0100 Subject: [PATCH] Add missing questions-path to Makefile Signed-off-by: Martin Kravec --- Cargo.toml | 2 +- Makefile | 2 +- artifacthub-pkg.yml | 30 ++++++++++++++++++++++++------ 3 files changed, 26 insertions(+), 8 deletions(-) diff --git a/Cargo.toml b/Cargo.toml index 395d815..44611c3 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "pod-privileged-policy" -version = "0.3.0" +version = "0.3.1" authors = ["José Guilherme Vanz "] edition = "2021" diff --git a/Makefile b/Makefile index 5449e7f..68972d2 100644 --- a/Makefile +++ b/Makefile @@ -7,7 +7,7 @@ policy.wasm: $(SOURCE_FILES) Cargo.* artifacthub-pkg.yml: metadata.yml Cargo.toml kwctl scaffold artifacthub --metadata-path metadata.yml --version $(VERSION) \ - --output artifacthub-pkg.yml + --questions-path questions-ui.yml --output artifacthub-pkg.yml annotated-policy.wasm: policy.wasm metadata.yml kwctl annotate -m metadata.yml -u README.md -o annotated-policy.wasm policy.wasm diff --git a/artifacthub-pkg.yml b/artifacthub-pkg.yml index a89c29a..1589ad2 100644 --- a/artifacthub-pkg.yml +++ b/artifacthub-pkg.yml @@ -4,16 +4,16 @@ # # This config can be saved to its default location with: # kwctl scaffold artifacthub > artifacthub-pkg.yml -version: 0.3.0 +version: 0.3.1 name: pod-privileged-policy displayName: Pod Privileged Policy -createdAt: 2023-12-19T16:36:22.009478594Z +createdAt: 2024-01-04T15:12:05.850009857Z description: Limit the ability to create privileged containers license: Apache-2.0 homeURL: https://github.com/kubewarden/pod-privileged-policy containersImages: - name: policy - image: ghcr.io/kubewarden/policies/pod-privileged:v0.3.0 + image: ghcr.io/kubewarden/policies/pod-privileged:v0.3.1 keywords: - psp - pod @@ -21,17 +21,17 @@ keywords: - privileged links: - name: policy - url: https://github.com/kubewarden/pod-privileged-policy/releases/download/v0.3.0/policy.wasm + url: https://github.com/kubewarden/pod-privileged-policy/releases/download/v0.3.1/policy.wasm - name: source url: https://github.com/kubewarden/pod-privileged-policy install: | The policy can be obtained using [`kwctl`](https://github.com/kubewarden/kwctl): ```console - kwctl pull ghcr.io/kubewarden/policies/pod-privileged:v0.3.0 + kwctl pull ghcr.io/kubewarden/policies/pod-privileged:v0.3.1 ``` Then, generate the policy manifest and tune it to your liking. For example: ```console - kwctl scaffold manifest -t ClusterAdmissionPolicy registry://ghcr.io/kubewarden/policies/pod-privileged:v0.3.0 + kwctl scaffold manifest -t ClusterAdmissionPolicy registry://ghcr.io/kubewarden/policies/pod-privileged:v0.3.1 ``` maintainers: - name: Kubewarden developers @@ -42,6 +42,24 @@ recommendations: - url: https://artifacthub.io/packages/helm/kubewarden/kubewarden-controller annotations: kubewarden/mutation: 'false' + kubewarden/questions-ui: | + questions: + - default: false + tooltip: >- + Ignore that some init container is configured as privileged + group: Settings + label: Skip init containers + required: false + type: boolean + variable: skip_init_containers + - default: false + tooltip: >- + Ignore that some ephemeral container is configured as privileged + group: Settings + label: Skip ephemeral containers + required: false + type: boolean + variable: skip_ephemeral_containers kubewarden/resources: Pod kubewarden/rules: | - apiGroups: