From ac016ac87c952c0ead9cc7e39ce53d1848e6374c Mon Sep 17 00:00:00 2001 From: Frank Jogeleit Date: Fri, 20 Sep 2024 15:21:27 +0200 Subject: [PATCH] update controller list Signed-off-by: Frank Jogeleit --- charts/policy-reporter/README.md | 3 ++- charts/policy-reporter/templates/_helpers.tpl | 1 - charts/policy-reporter/values.yaml | 4 +++- pkg/report/source_filter.go | 2 +- pkg/target/securityhub/securityhub.go | 2 +- 5 files changed, 7 insertions(+), 5 deletions(-) diff --git a/charts/policy-reporter/README.md b/charts/policy-reporter/README.md index 4d32911d..59b8368d 100644 --- a/charts/policy-reporter/README.md +++ b/charts/policy-reporter/README.md @@ -56,7 +56,7 @@ Check the [Documentation](https://kyverno.github.io/policy-reporter/guide/02-get | image.registry | string | `"ghcr.io"` | | | image.repository | string | `"kyverno/policy-reporter"` | | | image.pullPolicy | string | `"IfNotPresent"` | | -| image.tag | string | `"ab7c0b6"` | | +| image.tag | string | `"05a2b24"` | | | imagePullSecrets | list | `[]` | | | priorityClassName | string | `""` | | | replicaCount | int | `1` | | @@ -291,6 +291,7 @@ Check the [Documentation](https://kyverno.github.io/policy-reporter/guide/02-get | target.securityHub.endpoint | string | `""` | | | target.securityHub.accountId | string | `""` | | | target.securityHub.productName | string | `""` | | +| target.securityHub.companyName | string | `""` | | | target.securityHub.minimumSeverity | string | `""` | | | target.securityHub.sources | list | `[]` | | | target.securityHub.skipExistingOnStartup | bool | `false` | | diff --git a/charts/policy-reporter/templates/_helpers.tpl b/charts/policy-reporter/templates/_helpers.tpl index 1fcdd4b7..326fa277 100644 --- a/charts/policy-reporter/templates/_helpers.tpl +++ b/charts/policy-reporter/templates/_helpers.tpl @@ -123,7 +123,6 @@ maxUnavailable: {{ .Values.podDisruptionBudget.maxUnavailable }} {{- define "target" -}} name: {{ .name | quote }} -path: {{ .path | quote }} secretRef: {{ .secretRef | quote }} mountedSecret: {{ .mountedSecret | quote }} minimumSeverity: {{ .minimumSeverity | quote }} diff --git a/charts/policy-reporter/values.yaml b/charts/policy-reporter/values.yaml index 88dc7fb5..a20e3df2 100644 --- a/charts/policy-reporter/values.yaml +++ b/charts/policy-reporter/values.yaml @@ -11,7 +11,7 @@ image: registry: ghcr.io repository: kyverno/policy-reporter pullPolicy: IfNotPresent - tag: ab7c0b6 + tag: 05a2b24 imagePullSecrets: [] @@ -612,6 +612,8 @@ target: accountId: "" # Used product name, defaults to "Polilcy Reporter" productName: "" + # Used product name, defaults to "Kyverno" + companyName: "" # minimum severity "" < info < low < medium < high < critical minimumSeverity: "" # list of sources which should send to S3 diff --git a/pkg/report/source_filter.go b/pkg/report/source_filter.go index 7e231ed2..2d40515c 100644 --- a/pkg/report/source_filter.go +++ b/pkg/report/source_filter.go @@ -128,7 +128,7 @@ func NewSourceFilter(pods PodClient, jobs JobClient, validations []SourceValidat return &SourceFilter{pods: pods, jobs: jobs, validations: validations} } -var controller = []string{"ReplicaSet", "DaemonSet", "CronJob", "Job"} +var controller = []string{"ReplicaSet", "DaemonSet", "CronJob", "Job", "Job", "StatefulSet"} func Uncontrolled(owner []metav1.OwnerReference) bool { if len(owner) == 0 { diff --git a/pkg/target/securityhub/securityhub.go b/pkg/target/securityhub/securityhub.go index 4de9f57e..448e4c77 100644 --- a/pkg/target/securityhub/securityhub.go +++ b/pkg/target/securityhub/securityhub.go @@ -273,7 +273,7 @@ func (c *client) CleanUp(ctx context.Context, report v1alpha2.ReportInterface) { count, err := c.batchUpdate(ctx, list, types.WorkflowStatusResolved) if err != nil { - zap.L().Error(c.Name()+": failed to batch archived findings", zap.Error(err)) + zap.L().Error(c.Name()+": failed to batch resolve findings", zap.Error(err)) return }