From b90a58a7ade6ca382abe77447f811eaa2c35584c Mon Sep 17 00:00:00 2001 From: cpanato Date: Thu, 19 Oct 2023 10:23:11 +0200 Subject: [PATCH 1/5] add dependabot config Signed-off-by: cpanato --- .github/dependabot.yml | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 000000000..afe5e44cd --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,10 @@ +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "daily" + labels: + - "area/dependency" + - "release-note-none" + - "ok-to-test" From 07cb10361c7db6053b436cdb85b681d93b34efcd Mon Sep 17 00:00:00 2001 From: cpanato Date: Thu, 19 Oct 2023 10:24:16 +0200 Subject: [PATCH 2/5] move to a charts directory to make it more clean Signed-off-by: cpanato --- {event-generator => charts/event-generator}/.helmignore | 0 {event-generator => charts/event-generator}/CHANGELOG.md | 0 {event-generator => charts/event-generator}/Chart.yaml | 0 {event-generator => charts/event-generator}/Makefile | 0 {event-generator => charts/event-generator}/README.gotmpl | 0 {event-generator => charts/event-generator}/README.md | 0 .../event-generator}/generated/helm-values.md | 0 .../event-generator}/templates/_helpers.tpl | 0 .../event-generator}/templates/deployment.yaml | 0 {event-generator => charts/event-generator}/templates/job.yaml | 0 .../event-generator}/templates/pod-template.tpl | 0 {event-generator => charts/event-generator}/templates/rbac.yaml | 0 {event-generator => charts/event-generator}/values.yaml | 0 {falco-exporter => charts/falco-exporter}/CHANGELOG.md | 0 {falco-exporter => charts/falco-exporter}/Chart.yaml | 0 {falco-exporter => charts/falco-exporter}/README.md | 0 {falco-exporter => charts/falco-exporter}/templates/NOTES.txt | 0 {falco-exporter => charts/falco-exporter}/templates/_helpers.tpl | 0 .../falco-exporter}/templates/daemonset.yaml | 0 .../falco-exporter}/templates/grafana-dashboard.yaml | 0 .../falco-exporter}/templates/podsecuritypolicy.yaml | 0 .../falco-exporter}/templates/prometheusrule.yaml | 0 {falco-exporter => charts/falco-exporter}/templates/role.yaml | 0 .../falco-exporter}/templates/rolebinding.yaml | 0 .../falco-exporter}/templates/secret-certs.yaml | 0 .../falco-exporter}/templates/securitycontextconstraints.yaml | 0 .../falco-exporter}/templates/server-secret-certs.yaml | 0 {falco-exporter => charts/falco-exporter}/templates/service.yaml | 0 .../falco-exporter}/templates/serviceaccount.yaml | 0 .../falco-exporter}/templates/servicemonitor.yaml | 0 .../falco-exporter}/templates/tests/test-connection.yaml | 0 {falco-exporter => charts/falco-exporter}/values.yaml | 0 {falco => charts/falco}/.gitignore | 0 {falco => charts/falco}/.helmignore | 0 {falco => charts/falco}/BREAKING-CHANGES.md | 0 {falco => charts/falco}/CHANGELOG.md | 0 {falco => charts/falco}/Chart.yaml | 0 {falco => charts/falco}/Makefile | 0 {falco => charts/falco}/OWNERS | 0 {falco => charts/falco}/README.gotmpl | 0 {falco => charts/falco}/README.md | 0 {falco => charts/falco}/ci/ci-values.yaml | 0 {falco => charts/falco}/generated/helm-values.md | 0 {falco => charts/falco}/templates/NOTES.txt | 0 {falco => charts/falco}/templates/_helpers.tpl | 0 {falco => charts/falco}/templates/certs-secret.yaml | 0 {falco => charts/falco}/templates/clusterrole.yaml | 0 {falco => charts/falco}/templates/clusterrolebinding.yaml | 0 {falco => charts/falco}/templates/configmap.yaml | 0 {falco => charts/falco}/templates/daemonset.yaml | 0 {falco => charts/falco}/templates/deployment.yaml | 0 {falco => charts/falco}/templates/falcoctl-configmap.yaml | 0 {falco => charts/falco}/templates/grpc-service.yaml | 0 {falco => charts/falco}/templates/pod-template.tpl | 0 {falco => charts/falco}/templates/rules-configmap.yaml | 0 {falco => charts/falco}/templates/securitycontextconstraints.yaml | 0 {falco => charts/falco}/templates/serviceaccount.yaml | 0 {falco => charts/falco}/templates/services.yaml | 0 {falco => charts/falco}/values-gvisor-gke.yaml | 0 {falco => charts/falco}/values-k8saudit.yaml | 0 {falco => charts/falco}/values-syscall-k8saudit.yaml | 0 {falco => charts/falco}/values.yaml | 0 {falcosidekick => charts/falcosidekick}/CHANGELOG.md | 0 {falcosidekick => charts/falcosidekick}/Chart.yaml | 0 {falcosidekick => charts/falcosidekick}/Makefile | 0 {falcosidekick => charts/falcosidekick}/README.gotmpl | 0 {falcosidekick => charts/falcosidekick}/README.md | 0 {falcosidekick => charts/falcosidekick}/templates/NOTES.txt | 0 {falcosidekick => charts/falcosidekick}/templates/_helpers.tpl | 0 .../falcosidekick}/templates/aadpodidentity.yaml | 0 .../falcosidekick}/templates/certs-secret.yaml | 0 .../falcosidekick}/templates/clusterrole.yaml | 0 .../falcosidekick}/templates/deployment-ui.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/deployment.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/ingress-ui.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/ingress.yaml | 0 .../falcosidekick}/templates/podsecuritypolicy.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/rbac-ui.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/rbac.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/secrets-ui.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/secrets.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/service-ui.yaml | 0 {falcosidekick => charts/falcosidekick}/templates/service.yaml | 0 .../falcosidekick}/templates/tests/test-connection.yaml | 0 {falcosidekick => charts/falcosidekick}/values.yaml | 0 85 files changed, 0 insertions(+), 0 deletions(-) rename {event-generator => charts/event-generator}/.helmignore (100%) rename {event-generator => charts/event-generator}/CHANGELOG.md (100%) rename {event-generator => charts/event-generator}/Chart.yaml (100%) rename {event-generator => charts/event-generator}/Makefile (100%) rename {event-generator => charts/event-generator}/README.gotmpl (100%) rename {event-generator => charts/event-generator}/README.md (100%) rename {event-generator => charts/event-generator}/generated/helm-values.md (100%) rename {event-generator => charts/event-generator}/templates/_helpers.tpl (100%) rename {event-generator => charts/event-generator}/templates/deployment.yaml (100%) rename {event-generator => charts/event-generator}/templates/job.yaml (100%) rename {event-generator => charts/event-generator}/templates/pod-template.tpl (100%) rename {event-generator => charts/event-generator}/templates/rbac.yaml (100%) rename {event-generator => charts/event-generator}/values.yaml (100%) rename {falco-exporter => charts/falco-exporter}/CHANGELOG.md (100%) rename {falco-exporter => charts/falco-exporter}/Chart.yaml (100%) rename {falco-exporter => charts/falco-exporter}/README.md (100%) rename {falco-exporter => charts/falco-exporter}/templates/NOTES.txt (100%) rename {falco-exporter => charts/falco-exporter}/templates/_helpers.tpl (100%) rename {falco-exporter => charts/falco-exporter}/templates/daemonset.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/grafana-dashboard.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/podsecuritypolicy.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/prometheusrule.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/role.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/rolebinding.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/secret-certs.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/securitycontextconstraints.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/server-secret-certs.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/service.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/serviceaccount.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/servicemonitor.yaml (100%) rename {falco-exporter => charts/falco-exporter}/templates/tests/test-connection.yaml (100%) rename {falco-exporter => charts/falco-exporter}/values.yaml (100%) rename {falco => charts/falco}/.gitignore (100%) rename {falco => charts/falco}/.helmignore (100%) rename {falco => charts/falco}/BREAKING-CHANGES.md (100%) rename {falco => charts/falco}/CHANGELOG.md (100%) rename {falco => charts/falco}/Chart.yaml (100%) rename {falco => charts/falco}/Makefile (100%) rename {falco => charts/falco}/OWNERS (100%) rename {falco => charts/falco}/README.gotmpl (100%) rename {falco => charts/falco}/README.md (100%) rename {falco => charts/falco}/ci/ci-values.yaml (100%) rename {falco => charts/falco}/generated/helm-values.md (100%) rename {falco => charts/falco}/templates/NOTES.txt (100%) rename {falco => charts/falco}/templates/_helpers.tpl (100%) rename {falco => charts/falco}/templates/certs-secret.yaml (100%) rename {falco => charts/falco}/templates/clusterrole.yaml (100%) rename {falco => charts/falco}/templates/clusterrolebinding.yaml (100%) rename {falco => charts/falco}/templates/configmap.yaml (100%) rename {falco => charts/falco}/templates/daemonset.yaml (100%) rename {falco => charts/falco}/templates/deployment.yaml (100%) rename {falco => charts/falco}/templates/falcoctl-configmap.yaml (100%) rename {falco => charts/falco}/templates/grpc-service.yaml (100%) rename {falco => charts/falco}/templates/pod-template.tpl (100%) rename {falco => charts/falco}/templates/rules-configmap.yaml (100%) rename {falco => charts/falco}/templates/securitycontextconstraints.yaml (100%) rename {falco => charts/falco}/templates/serviceaccount.yaml (100%) rename {falco => charts/falco}/templates/services.yaml (100%) rename {falco => charts/falco}/values-gvisor-gke.yaml (100%) rename {falco => charts/falco}/values-k8saudit.yaml (100%) rename {falco => charts/falco}/values-syscall-k8saudit.yaml (100%) rename {falco => charts/falco}/values.yaml (100%) rename {falcosidekick => charts/falcosidekick}/CHANGELOG.md (100%) rename {falcosidekick => charts/falcosidekick}/Chart.yaml (100%) rename {falcosidekick => charts/falcosidekick}/Makefile (100%) rename {falcosidekick => charts/falcosidekick}/README.gotmpl (100%) rename {falcosidekick => charts/falcosidekick}/README.md (100%) rename {falcosidekick => charts/falcosidekick}/templates/NOTES.txt (100%) rename {falcosidekick => charts/falcosidekick}/templates/_helpers.tpl (100%) rename {falcosidekick => charts/falcosidekick}/templates/aadpodidentity.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/certs-secret.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/clusterrole.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/deployment-ui.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/deployment.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/ingress-ui.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/ingress.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/podsecuritypolicy.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/rbac-ui.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/rbac.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/secrets-ui.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/secrets.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/service-ui.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/service.yaml (100%) rename {falcosidekick => charts/falcosidekick}/templates/tests/test-connection.yaml (100%) rename {falcosidekick => charts/falcosidekick}/values.yaml (100%) diff --git a/event-generator/.helmignore b/charts/event-generator/.helmignore similarity index 100% rename from event-generator/.helmignore rename to charts/event-generator/.helmignore diff --git a/event-generator/CHANGELOG.md b/charts/event-generator/CHANGELOG.md similarity index 100% rename from event-generator/CHANGELOG.md rename to charts/event-generator/CHANGELOG.md diff --git a/event-generator/Chart.yaml b/charts/event-generator/Chart.yaml similarity index 100% rename from event-generator/Chart.yaml rename to charts/event-generator/Chart.yaml diff --git a/event-generator/Makefile b/charts/event-generator/Makefile similarity index 100% rename from event-generator/Makefile rename to charts/event-generator/Makefile diff --git a/event-generator/README.gotmpl b/charts/event-generator/README.gotmpl similarity index 100% rename from event-generator/README.gotmpl rename to charts/event-generator/README.gotmpl diff --git a/event-generator/README.md b/charts/event-generator/README.md similarity index 100% rename from event-generator/README.md rename to charts/event-generator/README.md diff --git a/event-generator/generated/helm-values.md b/charts/event-generator/generated/helm-values.md similarity index 100% rename from event-generator/generated/helm-values.md rename to charts/event-generator/generated/helm-values.md diff --git a/event-generator/templates/_helpers.tpl b/charts/event-generator/templates/_helpers.tpl similarity index 100% rename from event-generator/templates/_helpers.tpl rename to charts/event-generator/templates/_helpers.tpl diff --git a/event-generator/templates/deployment.yaml b/charts/event-generator/templates/deployment.yaml similarity index 100% rename from event-generator/templates/deployment.yaml rename to charts/event-generator/templates/deployment.yaml diff --git a/event-generator/templates/job.yaml b/charts/event-generator/templates/job.yaml similarity index 100% rename from event-generator/templates/job.yaml rename to charts/event-generator/templates/job.yaml diff --git a/event-generator/templates/pod-template.tpl b/charts/event-generator/templates/pod-template.tpl similarity index 100% rename from event-generator/templates/pod-template.tpl rename to charts/event-generator/templates/pod-template.tpl diff --git a/event-generator/templates/rbac.yaml b/charts/event-generator/templates/rbac.yaml similarity index 100% rename from event-generator/templates/rbac.yaml rename to charts/event-generator/templates/rbac.yaml diff --git a/event-generator/values.yaml b/charts/event-generator/values.yaml similarity index 100% rename from event-generator/values.yaml rename to charts/event-generator/values.yaml diff --git a/falco-exporter/CHANGELOG.md b/charts/falco-exporter/CHANGELOG.md similarity index 100% rename from falco-exporter/CHANGELOG.md rename to charts/falco-exporter/CHANGELOG.md diff --git a/falco-exporter/Chart.yaml b/charts/falco-exporter/Chart.yaml similarity index 100% rename from falco-exporter/Chart.yaml rename to charts/falco-exporter/Chart.yaml diff --git a/falco-exporter/README.md b/charts/falco-exporter/README.md similarity index 100% rename from falco-exporter/README.md rename to charts/falco-exporter/README.md diff --git a/falco-exporter/templates/NOTES.txt b/charts/falco-exporter/templates/NOTES.txt similarity index 100% rename from falco-exporter/templates/NOTES.txt rename to charts/falco-exporter/templates/NOTES.txt diff --git a/falco-exporter/templates/_helpers.tpl b/charts/falco-exporter/templates/_helpers.tpl similarity index 100% rename from falco-exporter/templates/_helpers.tpl rename to charts/falco-exporter/templates/_helpers.tpl diff --git a/falco-exporter/templates/daemonset.yaml b/charts/falco-exporter/templates/daemonset.yaml similarity index 100% rename from falco-exporter/templates/daemonset.yaml rename to charts/falco-exporter/templates/daemonset.yaml diff --git a/falco-exporter/templates/grafana-dashboard.yaml b/charts/falco-exporter/templates/grafana-dashboard.yaml similarity index 100% rename from falco-exporter/templates/grafana-dashboard.yaml rename to charts/falco-exporter/templates/grafana-dashboard.yaml diff --git a/falco-exporter/templates/podsecuritypolicy.yaml b/charts/falco-exporter/templates/podsecuritypolicy.yaml similarity index 100% rename from falco-exporter/templates/podsecuritypolicy.yaml rename to charts/falco-exporter/templates/podsecuritypolicy.yaml diff --git a/falco-exporter/templates/prometheusrule.yaml b/charts/falco-exporter/templates/prometheusrule.yaml similarity index 100% rename from falco-exporter/templates/prometheusrule.yaml rename to charts/falco-exporter/templates/prometheusrule.yaml diff --git a/falco-exporter/templates/role.yaml b/charts/falco-exporter/templates/role.yaml similarity index 100% rename from falco-exporter/templates/role.yaml rename to charts/falco-exporter/templates/role.yaml diff --git a/falco-exporter/templates/rolebinding.yaml b/charts/falco-exporter/templates/rolebinding.yaml similarity index 100% rename from falco-exporter/templates/rolebinding.yaml rename to charts/falco-exporter/templates/rolebinding.yaml diff --git a/falco-exporter/templates/secret-certs.yaml b/charts/falco-exporter/templates/secret-certs.yaml similarity index 100% rename from falco-exporter/templates/secret-certs.yaml rename to charts/falco-exporter/templates/secret-certs.yaml diff --git a/falco-exporter/templates/securitycontextconstraints.yaml b/charts/falco-exporter/templates/securitycontextconstraints.yaml similarity index 100% rename from falco-exporter/templates/securitycontextconstraints.yaml rename to charts/falco-exporter/templates/securitycontextconstraints.yaml diff --git a/falco-exporter/templates/server-secret-certs.yaml b/charts/falco-exporter/templates/server-secret-certs.yaml similarity index 100% rename from falco-exporter/templates/server-secret-certs.yaml rename to charts/falco-exporter/templates/server-secret-certs.yaml diff --git a/falco-exporter/templates/service.yaml b/charts/falco-exporter/templates/service.yaml similarity index 100% rename from falco-exporter/templates/service.yaml rename to charts/falco-exporter/templates/service.yaml diff --git a/falco-exporter/templates/serviceaccount.yaml b/charts/falco-exporter/templates/serviceaccount.yaml similarity index 100% rename from falco-exporter/templates/serviceaccount.yaml rename to charts/falco-exporter/templates/serviceaccount.yaml diff --git a/falco-exporter/templates/servicemonitor.yaml b/charts/falco-exporter/templates/servicemonitor.yaml similarity index 100% rename from falco-exporter/templates/servicemonitor.yaml rename to charts/falco-exporter/templates/servicemonitor.yaml diff --git a/falco-exporter/templates/tests/test-connection.yaml b/charts/falco-exporter/templates/tests/test-connection.yaml similarity index 100% rename from falco-exporter/templates/tests/test-connection.yaml rename to charts/falco-exporter/templates/tests/test-connection.yaml diff --git a/falco-exporter/values.yaml b/charts/falco-exporter/values.yaml similarity index 100% rename from falco-exporter/values.yaml rename to charts/falco-exporter/values.yaml diff --git a/falco/.gitignore b/charts/falco/.gitignore similarity index 100% rename from falco/.gitignore rename to charts/falco/.gitignore diff --git a/falco/.helmignore b/charts/falco/.helmignore similarity index 100% rename from falco/.helmignore rename to charts/falco/.helmignore diff --git a/falco/BREAKING-CHANGES.md b/charts/falco/BREAKING-CHANGES.md similarity index 100% rename from falco/BREAKING-CHANGES.md rename to charts/falco/BREAKING-CHANGES.md diff --git a/falco/CHANGELOG.md b/charts/falco/CHANGELOG.md similarity index 100% rename from falco/CHANGELOG.md rename to charts/falco/CHANGELOG.md diff --git a/falco/Chart.yaml b/charts/falco/Chart.yaml similarity index 100% rename from falco/Chart.yaml rename to charts/falco/Chart.yaml diff --git a/falco/Makefile b/charts/falco/Makefile similarity index 100% rename from falco/Makefile rename to charts/falco/Makefile diff --git a/falco/OWNERS b/charts/falco/OWNERS similarity index 100% rename from falco/OWNERS rename to charts/falco/OWNERS diff --git a/falco/README.gotmpl b/charts/falco/README.gotmpl similarity index 100% rename from falco/README.gotmpl rename to charts/falco/README.gotmpl diff --git a/falco/README.md b/charts/falco/README.md similarity index 100% rename from falco/README.md rename to charts/falco/README.md diff --git a/falco/ci/ci-values.yaml b/charts/falco/ci/ci-values.yaml similarity index 100% rename from falco/ci/ci-values.yaml rename to charts/falco/ci/ci-values.yaml diff --git a/falco/generated/helm-values.md b/charts/falco/generated/helm-values.md similarity index 100% rename from falco/generated/helm-values.md rename to charts/falco/generated/helm-values.md diff --git a/falco/templates/NOTES.txt b/charts/falco/templates/NOTES.txt similarity index 100% rename from falco/templates/NOTES.txt rename to charts/falco/templates/NOTES.txt diff --git a/falco/templates/_helpers.tpl b/charts/falco/templates/_helpers.tpl similarity index 100% rename from falco/templates/_helpers.tpl rename to charts/falco/templates/_helpers.tpl diff --git a/falco/templates/certs-secret.yaml b/charts/falco/templates/certs-secret.yaml similarity index 100% rename from falco/templates/certs-secret.yaml rename to charts/falco/templates/certs-secret.yaml diff --git a/falco/templates/clusterrole.yaml b/charts/falco/templates/clusterrole.yaml similarity index 100% rename from falco/templates/clusterrole.yaml rename to charts/falco/templates/clusterrole.yaml diff --git a/falco/templates/clusterrolebinding.yaml b/charts/falco/templates/clusterrolebinding.yaml similarity index 100% rename from falco/templates/clusterrolebinding.yaml rename to charts/falco/templates/clusterrolebinding.yaml diff --git a/falco/templates/configmap.yaml b/charts/falco/templates/configmap.yaml similarity index 100% rename from falco/templates/configmap.yaml rename to charts/falco/templates/configmap.yaml diff --git a/falco/templates/daemonset.yaml b/charts/falco/templates/daemonset.yaml similarity index 100% rename from falco/templates/daemonset.yaml rename to charts/falco/templates/daemonset.yaml diff --git a/falco/templates/deployment.yaml b/charts/falco/templates/deployment.yaml similarity index 100% rename from falco/templates/deployment.yaml rename to charts/falco/templates/deployment.yaml diff --git a/falco/templates/falcoctl-configmap.yaml b/charts/falco/templates/falcoctl-configmap.yaml similarity index 100% rename from falco/templates/falcoctl-configmap.yaml rename to charts/falco/templates/falcoctl-configmap.yaml diff --git a/falco/templates/grpc-service.yaml b/charts/falco/templates/grpc-service.yaml similarity index 100% rename from falco/templates/grpc-service.yaml rename to charts/falco/templates/grpc-service.yaml diff --git a/falco/templates/pod-template.tpl b/charts/falco/templates/pod-template.tpl similarity index 100% rename from falco/templates/pod-template.tpl rename to charts/falco/templates/pod-template.tpl diff --git a/falco/templates/rules-configmap.yaml b/charts/falco/templates/rules-configmap.yaml similarity index 100% rename from falco/templates/rules-configmap.yaml rename to charts/falco/templates/rules-configmap.yaml diff --git a/falco/templates/securitycontextconstraints.yaml b/charts/falco/templates/securitycontextconstraints.yaml similarity index 100% rename from falco/templates/securitycontextconstraints.yaml rename to charts/falco/templates/securitycontextconstraints.yaml diff --git a/falco/templates/serviceaccount.yaml b/charts/falco/templates/serviceaccount.yaml similarity index 100% rename from falco/templates/serviceaccount.yaml rename to charts/falco/templates/serviceaccount.yaml diff --git a/falco/templates/services.yaml b/charts/falco/templates/services.yaml similarity index 100% rename from falco/templates/services.yaml rename to charts/falco/templates/services.yaml diff --git a/falco/values-gvisor-gke.yaml b/charts/falco/values-gvisor-gke.yaml similarity index 100% rename from falco/values-gvisor-gke.yaml rename to charts/falco/values-gvisor-gke.yaml diff --git a/falco/values-k8saudit.yaml b/charts/falco/values-k8saudit.yaml similarity index 100% rename from falco/values-k8saudit.yaml rename to charts/falco/values-k8saudit.yaml diff --git a/falco/values-syscall-k8saudit.yaml b/charts/falco/values-syscall-k8saudit.yaml similarity index 100% rename from falco/values-syscall-k8saudit.yaml rename to charts/falco/values-syscall-k8saudit.yaml diff --git a/falco/values.yaml b/charts/falco/values.yaml similarity index 100% rename from falco/values.yaml rename to charts/falco/values.yaml diff --git a/falcosidekick/CHANGELOG.md b/charts/falcosidekick/CHANGELOG.md similarity index 100% rename from falcosidekick/CHANGELOG.md rename to charts/falcosidekick/CHANGELOG.md diff --git a/falcosidekick/Chart.yaml b/charts/falcosidekick/Chart.yaml similarity index 100% rename from falcosidekick/Chart.yaml rename to charts/falcosidekick/Chart.yaml diff --git a/falcosidekick/Makefile b/charts/falcosidekick/Makefile similarity index 100% rename from falcosidekick/Makefile rename to charts/falcosidekick/Makefile diff --git a/falcosidekick/README.gotmpl b/charts/falcosidekick/README.gotmpl similarity index 100% rename from falcosidekick/README.gotmpl rename to charts/falcosidekick/README.gotmpl diff --git a/falcosidekick/README.md b/charts/falcosidekick/README.md similarity index 100% rename from falcosidekick/README.md rename to charts/falcosidekick/README.md diff --git a/falcosidekick/templates/NOTES.txt b/charts/falcosidekick/templates/NOTES.txt similarity index 100% rename from falcosidekick/templates/NOTES.txt rename to charts/falcosidekick/templates/NOTES.txt diff --git a/falcosidekick/templates/_helpers.tpl b/charts/falcosidekick/templates/_helpers.tpl similarity index 100% rename from falcosidekick/templates/_helpers.tpl rename to charts/falcosidekick/templates/_helpers.tpl diff --git a/falcosidekick/templates/aadpodidentity.yaml b/charts/falcosidekick/templates/aadpodidentity.yaml similarity index 100% rename from falcosidekick/templates/aadpodidentity.yaml rename to charts/falcosidekick/templates/aadpodidentity.yaml diff --git a/falcosidekick/templates/certs-secret.yaml b/charts/falcosidekick/templates/certs-secret.yaml similarity index 100% rename from falcosidekick/templates/certs-secret.yaml rename to charts/falcosidekick/templates/certs-secret.yaml diff --git a/falcosidekick/templates/clusterrole.yaml b/charts/falcosidekick/templates/clusterrole.yaml similarity index 100% rename from falcosidekick/templates/clusterrole.yaml rename to charts/falcosidekick/templates/clusterrole.yaml diff --git a/falcosidekick/templates/deployment-ui.yaml b/charts/falcosidekick/templates/deployment-ui.yaml similarity index 100% rename from falcosidekick/templates/deployment-ui.yaml rename to charts/falcosidekick/templates/deployment-ui.yaml diff --git a/falcosidekick/templates/deployment.yaml b/charts/falcosidekick/templates/deployment.yaml similarity index 100% rename from falcosidekick/templates/deployment.yaml rename to charts/falcosidekick/templates/deployment.yaml diff --git a/falcosidekick/templates/ingress-ui.yaml b/charts/falcosidekick/templates/ingress-ui.yaml similarity index 100% rename from falcosidekick/templates/ingress-ui.yaml rename to charts/falcosidekick/templates/ingress-ui.yaml diff --git a/falcosidekick/templates/ingress.yaml b/charts/falcosidekick/templates/ingress.yaml similarity index 100% rename from falcosidekick/templates/ingress.yaml rename to charts/falcosidekick/templates/ingress.yaml diff --git a/falcosidekick/templates/podsecuritypolicy.yaml b/charts/falcosidekick/templates/podsecuritypolicy.yaml similarity index 100% rename from falcosidekick/templates/podsecuritypolicy.yaml rename to charts/falcosidekick/templates/podsecuritypolicy.yaml diff --git a/falcosidekick/templates/rbac-ui.yaml b/charts/falcosidekick/templates/rbac-ui.yaml similarity index 100% rename from falcosidekick/templates/rbac-ui.yaml rename to charts/falcosidekick/templates/rbac-ui.yaml diff --git a/falcosidekick/templates/rbac.yaml b/charts/falcosidekick/templates/rbac.yaml similarity index 100% rename from falcosidekick/templates/rbac.yaml rename to charts/falcosidekick/templates/rbac.yaml diff --git a/falcosidekick/templates/secrets-ui.yaml b/charts/falcosidekick/templates/secrets-ui.yaml similarity index 100% rename from falcosidekick/templates/secrets-ui.yaml rename to charts/falcosidekick/templates/secrets-ui.yaml diff --git a/falcosidekick/templates/secrets.yaml b/charts/falcosidekick/templates/secrets.yaml similarity index 100% rename from falcosidekick/templates/secrets.yaml rename to charts/falcosidekick/templates/secrets.yaml diff --git a/falcosidekick/templates/service-ui.yaml b/charts/falcosidekick/templates/service-ui.yaml similarity index 100% rename from falcosidekick/templates/service-ui.yaml rename to charts/falcosidekick/templates/service-ui.yaml diff --git a/falcosidekick/templates/service.yaml b/charts/falcosidekick/templates/service.yaml similarity index 100% rename from falcosidekick/templates/service.yaml rename to charts/falcosidekick/templates/service.yaml diff --git a/falcosidekick/templates/tests/test-connection.yaml b/charts/falcosidekick/templates/tests/test-connection.yaml similarity index 100% rename from falcosidekick/templates/tests/test-connection.yaml rename to charts/falcosidekick/templates/tests/test-connection.yaml diff --git a/falcosidekick/values.yaml b/charts/falcosidekick/values.yaml similarity index 100% rename from falcosidekick/values.yaml rename to charts/falcosidekick/values.yaml From 8199a85cfdf21e4262e145dd2e69daad914113e9 Mon Sep 17 00:00:00 2001 From: cpanato Date: Thu, 19 Oct 2023 10:29:01 +0200 Subject: [PATCH 3/5] drop circleci config Signed-off-by: cpanato --- .circleci/config.yml | 75 ----------------------------- .circleci/install_tools.sh | 20 -------- .circleci/release.sh | 91 ----------------------------------- tests/ct.yaml | 9 ---- tests/e2e-kind.sh | 97 -------------------------------------- 5 files changed, 292 deletions(-) delete mode 100644 .circleci/config.yml delete mode 100755 .circleci/install_tools.sh delete mode 100755 .circleci/release.sh delete mode 100644 tests/ct.yaml delete mode 100755 tests/e2e-kind.sh diff --git a/.circleci/config.yml b/.circleci/config.yml deleted file mode 100644 index d49419580..000000000 --- a/.circleci/config.yml +++ /dev/null @@ -1,75 +0,0 @@ -version: 2.1 -jobs: - lint-scripts: - docker: - - image: koalaman/shellcheck-alpine - steps: - - checkout - - run: - command: | - shellcheck -x tests/e2e-kind.sh - shellcheck -x .circleci/install_tools.sh - shellcheck -x .circleci/release.sh - - lint-charts: - docker: - - image: quay.io/helmpack/chart-testing:v3.8.0 - steps: - - checkout - - run: - name: lint - command: ct lint --config tests/ct.yaml - - install-charts: - machine: - image: ubuntu-2004:202111-02 - resource_class: medium - steps: - - checkout - - run: - command: tests/e2e-kind.sh - no_output_timeout: 1h - - release-charts: - docker: - - image: cimg/base:stable - steps: - - run: - name: checkout - command: | - git clone https://${GITHUB_TOKEN}@github.com/${CIRCLE_PROJECT_USERNAME}/${CIRCLE_PROJECT_REPONAME}.git . - - run: - name: release - command: | - echo "export CR_REPO_URL=https://falcosecurity.github.io/charts" >> $BASH_ENV - echo "export GIT_USERNAME=$CIRCLE_PROJECT_USERNAME" >> $BASH_ENV - echo "export GIT_REPOSITORY_NAME=$CIRCLE_PROJECT_REPONAME" >> $BASH_ENV - .circleci/install_tools.sh - .circleci/release.sh - -workflows: - version: 2 - release: - jobs: - - lint-scripts: - filters: - branches: - ignore: gh-pages - - lint-charts: - filters: - branches: - ignore: gh-pages - - install-charts: - filters: - branches: - ignore: gh-pages - requires: - - lint-scripts - - lint-charts - - release-charts: - context: falco - filters: - tags: - ignore: /.*/ - branches: - only: master \ No newline at end of file diff --git a/.circleci/install_tools.sh b/.circleci/install_tools.sh deleted file mode 100755 index 67574edb7..000000000 --- a/.circleci/install_tools.sh +++ /dev/null @@ -1,20 +0,0 @@ -#!/usr/bin/env bash - -set -o errexit - -readonly HELM_VERSION=3.9.0 -readonly CHART_RELEASER_VERSION=1.0.0-beta.1 - -echo "Installing Helm..." -curl -LO "https://get.helm.sh/helm-v$HELM_VERSION-linux-amd64.tar.gz" -sudo mkdir -p "/usr/local/helm-v$HELM_VERSION" -sudo tar -xzf "helm-v$HELM_VERSION-linux-amd64.tar.gz" -C "/usr/local/helm-v$HELM_VERSION" -sudo ln -s "/usr/local/helm-v$HELM_VERSION/linux-amd64/helm" /usr/local/bin/helm -rm -f "helm-v$HELM_VERSION-linux-amd64.tar.gz" - -echo "Installing chart-releaser..." -curl -LO "https://github.com/helm/chart-releaser/releases/download/v${CHART_RELEASER_VERSION}/chart-releaser_${CHART_RELEASER_VERSION}_linux_amd64.tar.gz" -sudo mkdir -p "/usr/local/chart-releaser-v$CHART_RELEASER_VERSION" -sudo tar -xzf "chart-releaser_${CHART_RELEASER_VERSION}_linux_amd64.tar.gz" -C "/usr/local/chart-releaser-v$CHART_RELEASER_VERSION" -sudo ln -s "/usr/local/chart-releaser-v$CHART_RELEASER_VERSION/cr" /usr/local/bin/cr -rm -f "chart-releaser_${CHART_RELEASER_VERSION}_linux_amd64.tar.gz" diff --git a/.circleci/release.sh b/.circleci/release.sh deleted file mode 100755 index 16161d04b..000000000 --- a/.circleci/release.sh +++ /dev/null @@ -1,91 +0,0 @@ -#!/usr/bin/env bash - -set -o errexit -set -o nounset -set -o pipefail - -: "${GITHUB_TOKEN:?Environment variable GITHUB_TOKEN must be set}" -: "${CR_REPO_URL:?Environment variable CR_REPO_URL must be set}" -: "${GIT_USERNAME:?Environment variable GIT_USERNAME must be set}" -: "${GIT_REPOSITORY_NAME:?Environment variable GIT_REPOSITORY_NAME must be set}" - -readonly REPO_ROOT="${REPO_ROOT:-$(git rev-parse --show-toplevel)}" -export CR_TOKEN="$GITHUB_TOKEN" - -main() { - pushd "$REPO_ROOT" > /dev/null - - echo "Fetching tags..." - git fetch --tags - - echo "Fetching charts..." - - local changed_charts=() - - # iterate over all charts and skip those that already have a tag matching the current version - for chart_config in */Chart.yaml; do - local chart_name - local chart_ver - local tag - - chart_name=$(awk '/^name: /{print $NF}' < "$chart_config" ) - chart_ver=$(awk '/^version: /{print $NF}' < "$chart_config") - tag="${chart_name}-${chart_ver}" - if git rev-parse "$tag" >/dev/null 2>&1; then - echo "Chart '$chart_name': tag '$tag' already exists, skipping." - else - echo "Chart '$chart_name': new version '$chart_ver' detected." - changed_charts+=("$chart_name") - fi - done - - # preparing dirs - rm -rf .cr-release-packages - mkdir -p .cr-release-packages - - rm -rf .cr-index - mkdir -p .cr-index - - # only release those charts for which a new version has been detected - if [[ -n "${changed_charts[*]}" ]]; then - for chart in "${changed_charts[@]}"; do - echo "Packaging chart '$chart'..." - package_chart "$chart" - done - - release_charts - - # the newly created GitHub releases may not be available yet; let's wait a bit to be sure. - sleep 5 - - update_index - else - echo "Nothing to do. No chart changes detected." - fi - - popd > /dev/null -} - -package_chart() { - local chart="$1" - helm package "$chart" --destination .cr-release-packages --dependency-update -} - -release_charts() { - cr upload -o "$GIT_USERNAME" -r "$GIT_REPOSITORY_NAME" -} - -update_index() { - cr index -o "$GIT_USERNAME" -r "$GIT_REPOSITORY_NAME" -c "$CR_REPO_URL" - - git config user.email "poiana@users.noreply.github.com" - git config user.name "poiana" - - git checkout gh-pages - cp --force .cr-index/index.yaml index.yaml - git add index.yaml - git commit --message="Update index.yaml" --signoff - git push origin gh-pages -} - -main diff --git a/tests/ct.yaml b/tests/ct.yaml deleted file mode 100644 index c735ee408..000000000 --- a/tests/ct.yaml +++ /dev/null @@ -1,9 +0,0 @@ -remote: origin -validate-maintainers: false -target-branch: master -chart-repos: - - stable=https://charts.helm.sh/stable - - falcosecurity=https://falcosecurity.github.io/charts -helm-extra-args: --timeout 800s -chart-dirs: - - . diff --git a/tests/e2e-kind.sh b/tests/e2e-kind.sh deleted file mode 100755 index 8ad617dc1..000000000 --- a/tests/e2e-kind.sh +++ /dev/null @@ -1,97 +0,0 @@ -#!/usr/bin/env bash - -set -o errexit -set -o nounset -set -o pipefail - -readonly CT_VERSION=v3.3.1 -readonly KIND_VERSION=v0.14.0 -readonly CLUSTER_NAME=falco-helm-test - -run_ct_container() { - echo 'Running ct container...' - docker run --rm --interactive --detach --network host --name ct \ - --volume "$(pwd)/tests/ct.yaml:/etc/ct/ct.yaml" \ - --volume "$(pwd):/workdir" \ - --workdir /workdir \ - "quay.io/helmpack/chart-testing:$CT_VERSION" \ - cat - echo -} - -cleanup() { - echo 'Removing ct container...' - docker kill ct > /dev/null 2>&1 - - echo 'Done!' -} - -docker_exec() { - docker exec --interactive ct "$@" -} - -create_kind_cluster() { - echo 'Installing kind...' - - curl -sSLo kind "https://github.com/kubernetes-sigs/kind/releases/download/$KIND_VERSION/kind-linux-amd64" - chmod +x kind - sudo mv kind /usr/local/bin/kind - - kind create cluster --name "$CLUSTER_NAME" --config tests/kind-config.yaml --wait 60s - - docker_exec mkdir -p /root/.kube - - echo 'Copying kubeconfig to container...' - - docker cp "$HOME/.kube/config" ct:/root/.kube/config - - docker_exec kubectl cluster-info - echo - - echo 'Waiting for nodes to be ready...' - docker_exec kubectl wait --for=condition=Ready nodes --all --timeout=300s - echo - - docker_exec kubectl get nodes - echo - - echo 'Cluster ready!' - echo -} - -install_charts() { - docker_exec ct install - echo -} - -install_falco_if_needed(){ - status=0 - git diff --quiet HEAD master -- falco-exporter || status=1 - if [ $status -eq 1 ]; then - echo "falco-exporter changed installing falco as well..." - docker_exec helm repo add falcosecurity https://falcosecurity.github.io/charts - docker_exec helm repo update - docker_exec helm install falco falcosecurity/falco -f tests/falco-test-ci.yaml - docker_exec kubectl get po -A - sleep 120 - docker_exec kubectl get po -A - fi -} - -main() { - run_ct_container - trap cleanup EXIT - - changed=$(docker_exec ct list-changed) - if [[ -z "$changed" ]]; then - echo 'No chart changes detected.' - return - fi - - echo 'Chart changes detected.' - create_kind_cluster - install_falco_if_needed - install_charts -} - -main From 6d17c1d58b2e464665e3dfa649dedb0926310060 Mon Sep 17 00:00:00 2001 From: cpanato Date: Thu, 19 Oct 2023 10:29:24 +0200 Subject: [PATCH 4/5] add github actions workflows fro testing and release Signed-off-by: cpanato --- .github/workflows/release.yml | 65 +++++++++++++++++++++++++++++++++++ .github/workflows/test.yml | 59 +++++++++++++++++++++++++++++++ ct.yaml | 9 +++++ 3 files changed, 133 insertions(+) create mode 100644 .github/workflows/release.yml create mode 100644 .github/workflows/test.yml create mode 100644 ct.yaml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml new file mode 100644 index 000000000..5d82e43ea --- /dev/null +++ b/.github/workflows/release.yml @@ -0,0 +1,65 @@ +name: Release Charts + +on: + push: + branches: + - main + - master + paths: + - "charts/**" + +jobs: + release: + runs-on: ubuntu-latest + + permissions: + contents: write + packages: write + id-token: write + + steps: + - name: Checkout + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 + with: + fetch-depth: 0 + + - name: Install Cosign + uses: sigstore/cosign-installer@11086d25041f77fe8fe7b9ea4e48e3b9192b8f19 # v3.1.2 + + - name: Configure Git + run: | + git config user.name "$GITHUB_ACTOR" + git config user.email "$GITHUB_ACTOR@users.noreply.github.com" + + - name: Set up Helm + uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5 + + - name: Add dependency chart repos + run: | + helm repo add falcosecurity https://falcosecurity.github.io/charts + + - name: Run chart-releaser + uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0 + with: + charts_dir: charts + env: + CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}" + + - name: Login to GitHub Container Registry + uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + - name: Publish and Sign OCI Charts + run: | + for chart in `find .cr-release-packages -name '*.tgz' -print`; do + helm push ${chart} oci://ghcr.io/${GITHUB_REPOSITORY} |& tee helm-push-output.log + file_name=${chart##*/} + chart_name=${file_name%-*} + digest=$(awk -F "[, ]+" '/Digest/{print $NF}' < helm-push-output.log) + cosign sign "ghcr.io/${GITHUB_REPOSITORY}/${chart_name}@${digest}" + done + env: + COSIGN_YES: true diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml new file mode 100644 index 000000000..18837f59b --- /dev/null +++ b/.github/workflows/test.yml @@ -0,0 +1,59 @@ +name: Test Charts + +on: + pull_request: + paths: + - "charts/**" + +jobs: + test: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 + with: + fetch-depth: 0 + + - name: Set up Helm + uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5 + + - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4.7.1 + with: + python-version: '3.x' + + - name: Set up chart-testing + uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0 + + - name: Run chart-testing (lint) + run: ct lint --config ct.yaml + + - name: Run chart-testing (list-changed) + id: list-changed + run: | + changed=$(ct list-changed --config ct.yaml) + if [[ -n "$changed" ]]; then + echo "changed=true" >> $GITHUB_OUTPUT + fi + + - name: Create KIND Cluster + if: steps.list-changed.outputs.changed == 'true' + uses: helm/kind-action@dda0770415bac9fc20092cacbc54aa298604d140 # v1.8.0 + with: + config: ./tests/kind-config.yaml + + - name: install falco if needed (ie for falco-exporter) + if: steps.list-changed.outputs.changed == 'true' + run: | + changed=$(ct list-changed --config ct.yaml) + if [[ "$changed[@]" =~ "charts/falco-exporter" ]]; then + helm repo add falcosecurity https://falcosecurity.github.io/charts + helm repo update + helm install falco falcosecurity/falco -f ./tests/falco-test-ci.yaml + kubectl get po -A + sleep 120 + kubectl get po -A + fi + + - name: Run chart-testing (install) + if: steps.list-changed.outputs.changed == 'true' + run: ct install --config ct.yaml diff --git a/ct.yaml b/ct.yaml new file mode 100644 index 000000000..4c039c181 --- /dev/null +++ b/ct.yaml @@ -0,0 +1,9 @@ +remote: origin +validate-maintainers: false +target-branch: master +chart-repos: + - stable=https://charts.helm.sh/stable + - falcosecurity=https://falcosecurity.github.io/charts +helm-extra-args: --timeout 800s +chart-dirs: + - charts From 121a04e7719e47c5f8768bad9963ad3672ee3c0e Mon Sep 17 00:00:00 2001 From: cpanato Date: Thu, 19 Oct 2023 11:29:29 +0200 Subject: [PATCH 5/5] testing Signed-off-by: cpanato --- ct.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/ct.yaml b/ct.yaml index 4c039c181..a50cef316 100644 --- a/ct.yaml +++ b/ct.yaml @@ -2,7 +2,6 @@ remote: origin validate-maintainers: false target-branch: master chart-repos: - - stable=https://charts.helm.sh/stable - falcosecurity=https://falcosecurity.github.io/charts helm-extra-args: --timeout 800s chart-dirs: