Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / open-policy-agent/gatekeeper-library issues and pull requests

#611 - chore: bump the all group across 1 directory with 8 updates

Pull Request - State: open - Opened by dependabot[bot] 7 days ago
Labels: dependencies, github_actions

#610 - chore: bump the all group across 1 directory with 8 updates

Pull Request - State: closed - Opened by dependabot[bot] 14 days ago - 1 comment
Labels: dependencies, github_actions

#608 - chore: bump the all group across 1 directory with 8 updates

Pull Request - State: closed - Opened by dependabot[bot] 21 days ago - 1 comment
Labels: dependencies, github_actions

#607 - Disable CPU Limits

Issue - State: open - Opened by Archisman-Mridha 21 days ago

#606 - chore: bump the all group across 1 directory with 8 updates

Pull Request - State: closed - Opened by dependabot[bot] 28 days ago - 1 comment
Labels: dependencies, github_actions

#605 - chore: bump the all group across 1 directory with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#604 - chore: bump the all group across 1 directory with 6 updates

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#603 - chore: adding CEL for psp-host-namespaces

Pull Request - State: open - Opened by JaydipGabani about 2 months ago

#602 - chore: bump the all group across 1 directory with 3 updates

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#601 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#600 - fix: fixing error in CEL code for privileged container policy

Pull Request - State: closed - Opened by JaydipGabani 2 months ago

#599 - fix: use newer seccompProfile spec in mutation

Pull Request - State: closed - Opened by sathieu 2 months ago

#598 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies, github_actions

#597 - chore: bump golang from `613a108` to `4a3c2bc` in /build/gomplate

Pull Request - State: open - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: stale, dependencies, docker

#595 - fix(k8sPSPHostFilesystem): null-check on volumes

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#594 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#593 - Incorrect PodDisruptionBudget ConstraintTemplate description

Issue - State: open - Opened by LilWatson 3 months ago - 1 comment
Labels: stale

#591 - fix(k8spspprivilegedcontainer): exemptImages CEL bug

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#590 - fix(k8spsphostnetworkingports): exemptImages CEL bug

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#589 - fix(k8spsphostnetworkingports): CEL fixes for hostNetwork variable and message

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#588 - fix(k8spspprocmount): exemptImages CEL bug

Pull Request - State: closed - Opened by julianKatz 3 months ago - 2 comments
Labels: K8sNativeValidation

#587 - chore(k8spspallowprivilegeescalationcontainer): suite test confirming exemptImages

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#586 - chore: Bump GATOR_VERSION to 1.17.0 from 1.16.3

Pull Request - State: open - Opened by julianKatz 3 months ago - 4 comments

#585 - DEMO (do not merge): Show breakage with no CEL change

Pull Request - State: closed - Opened by julianKatz 3 months ago

#584 - fix(k8spspreadonlyrootfilesystem): exemptImages CEL bug

Pull Request - State: closed - Opened by julianKatz 3 months ago - 1 comment
Labels: K8sNativeValidation

#583 - fix(k8srequiredlabels): CEL broke when allowedRegex was empty

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#582 - fix(k8spsphostnetworkingports): null check container.ports

Pull Request - State: closed - Opened by julianKatz 3 months ago
Labels: K8sNativeValidation

#581 - fix(k8spspallowprivilegeescalationcontainer): typo fix

Pull Request - State: closed - Opened by julianKatz 3 months ago - 1 comment

#580 - chore: bump github/codeql-action from 3.26.2 to 3.26.5 in the all group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#579 - feat(k8sdisallowanonymous): allow disallowing system:authenticated

Pull Request - State: closed - Opened by julianKatz 3 months ago - 1 comment

#578 - fix(k8sdisallowanonymous): correct no allowed roles

Pull Request - State: closed - Opened by apeabody 3 months ago

#577 - chore: bump github/codeql-action from 3.26.0 to 3.26.2 in the all group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#576 - chore: bump golang from 1.22 to 1.23 in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, docker

#574 - create a new set of tests with vap generation

Issue - State: open - Opened by sozercan 3 months ago - 1 comment

#572 - chore: bump golang from `86a3c48` to `2bd56f0` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, docker

#571 - chore: bump the all group with 3 updates

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#570 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#569 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#568 - chore: bump golang from `829eff9` to `86a3c48` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 3 comments
Labels: dependencies, docker

#567 - chore: bump k8s.io/apimachinery from 0.27.15 to 0.27.16 in /scripts/require-sync

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, go

#566 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#565 - chore: bump the all group with 4 updates

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#564 - chore: bump golang from `fcae9e0` to `829eff9` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, docker

#563 - chore: bump actions/upload-artifact from 4.3.3 to 4.3.4 in the all group

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#562 - chore: bump golang from `a66eda6` to `fcae9e0` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, docker

#560 - chore: bump github/codeql-action from 3.25.10 to 3.25.11 in the all group

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#559 - fix: 1:1 mapping for rego:cel for psp-host-network-ports policy

Pull Request - State: closed - Opened by JaydipGabani 5 months ago - 1 comment

#558 - chore: bump ws from 7.5.9 to 7.5.10 in /website

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#557 - chore: bump golang from `c2010b9` to `a66eda6` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, docker

#556 - K8sPSPHostNetworkingPorts constraint template not handling exemptImages parameter properly

Issue - State: closed - Opened by tmyhu 5 months ago - 6 comments
Labels: stale

#555 - [RFE] new general policy: whitelist domain names for routes

Pull Request - State: closed - Opened by michaelalang 5 months ago - 1 comment
Labels: stale

#554 - [RFE] new general policy: deny-networkpolicy-modifications

Pull Request - State: closed - Opened by michaelalang 5 months ago - 1 comment
Labels: stale

#553 - chore: bump braces from 3.0.2 to 3.0.3 in /website

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#552 - chore: bump k8s.io/apimachinery from 0.27.14 to 0.27.15 in /scripts/require-sync

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, go

#551 - chore: bump the all group across 1 directory with 4 updates

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#550 - chore: bump golang from `f43c6f0` to `969349b` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, docker

#549 - chore: bump the all group with 3 updates

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#547 - chore: adding CEL for psp-host-filesystem

Pull Request - State: closed - Opened by JaydipGabani 6 months ago

#546 - Improve Rego testing for library

Issue - State: open - Opened by JaydipGabani 6 months ago - 2 comments

#545 - chore: adding CEL for psp-proc-mount policy

Pull Request - State: closed - Opened by JaydipGabani 6 months ago

#544 - chore: adding CEL for psp-host-network-ports policy

Pull Request - State: closed - Opened by JaydipGabani 6 months ago

#543 - chore: adding cel for psp-privileged-containers

Pull Request - State: closed - Opened by JaydipGabani 6 months ago

#542 - chore: adding cel for psp-root-filesystem

Pull Request - State: closed - Opened by JaydipGabani 6 months ago

#541 - Add CEL code for PSP Policies in library

Issue - State: closed - Opened by JaydipGabani 6 months ago

#540 - chore: adding cel for psp-seccomp policy

Pull Request - State: closed - Opened by JaydipGabani 6 months ago - 2 comments

#539 - chore: bump github/codeql-action from 3.25.6 to 3.25.7 in the all group

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, github_actions

#538 - k8sallowedreposv2: Fix Security Bypass for Image Pulling

Pull Request - State: closed - Opened by yakirk 6 months ago - 9 comments

#537 - chore: adding psp-users CEL policy

Pull Request - State: open - Opened by JaydipGabani 6 months ago - 2 comments

#536 - Add VAP-CEL to K8sPSPFlexVolumes

Pull Request - State: open - Opened by maxsmythe 6 months ago - 2 comments

#535 - Add CEL to K8sPSPCapabilities template

Pull Request - State: closed - Opened by maxsmythe 6 months ago - 4 comments

#534 - chore: bump step-security/harden-runner from 2.7.1 to 2.8.0 in the all group

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, github_actions

#533 - feat: Update apparmor: add CEL, support securityContext

Pull Request - State: closed - Opened by maxsmythe 6 months ago - 9 comments

#530 - chore: adding cel for psp/volume and psp/selinux

Pull Request - State: open - Opened by JaydipGabani 6 months ago

#529 - k8sallowedrepos: Fix Security Bypass for Image Pulling

Pull Request - State: closed - Opened by yakirk 6 months ago - 4 comments

#528 - chore: bump the all group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#527 - chore: bump golang from `b1e05e2` to `f43c6f0` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, docker

#526 - chore: bump k8s.io/apimachinery from 0.27.13 to 0.27.14 in /scripts/require-sync

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, go

#525 - chore: bump the all group with 4 updates

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, github_actions

#524 - chore: bump golang from `d5302d4` to `b1e05e2` in /build/gomplate

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, docker

#523 - fsgroup cel

Pull Request - State: open - Opened by ritazh 7 months ago - 1 comment

#522 - K8sRequiredResources ConstraintTemplate doesn't work properly

Issue - State: closed - Opened by rkosyk 7 months ago - 1 comment

#521 - Forbidden sysctls cel

Pull Request - State: open - Opened by ritazh 7 months ago

#519 - ci: testing with cel policies

Pull Request - State: closed - Opened by JaydipGabani 7 months ago - 4 comments

#515 - fix(podDisruptionBudget): do not apply on ReplicaSets

Pull Request - State: closed - Opened by sathieu 7 months ago - 1 comment

#514 - feat(general): Add volumeresources emptyDir sizelimit

Pull Request - State: open - Opened by dongjiang1989 7 months ago - 10 comments

#510 - poddisruptionbudget policy query

Issue - State: closed - Opened by part-time-githubber 7 months ago - 3 comments
Labels: stale

#503 - adding cel for allow-privilege-escalation

Pull Request - State: closed - Opened by maxsmythe 8 months ago - 3 comments

#502 - Update capabilities.md for more clarity

Pull Request - State: closed - Opened by cccsss01 8 months ago - 1 comment
Labels: stale

#492 - Example of pod mutation adding init-container

Issue - State: closed - Opened by oreillymj 9 months ago - 4 comments
Labels: stale

#475 - Should apparmor always view unconfined as complaint?

Issue - State: closed - Opened by fseldow 10 months ago - 4 comments
Labels: stale

#451 - Any interest in policies/constraints that apply to custom resources?

Issue - State: closed - Opened by Speeddymon 12 months ago - 7 comments
Labels: stale