docker/quay
1
0
Fork 0
mirror of https://github.com/quay/quay.git synced 2026-01-29 08:42:15 +03:00
Code Activity
12,091 Commits 2,636 Branches 136 Tags
validation
Commit Graph

12091 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sunandadadi
52dc9f8437 adding validation to value and minor fixes 2024-06-18 21:21:02 -04:00
Sunandadadi
808dd6520c adding validation in config tool for default autoprune policy 2024-06-18 13:58:45 -04:00
bcaton
8e3ba71aea adding registry wide autopruning 2024-06-17 15:09:16 -04:00
Syed Ahmed
a8e6a6406d storage: Add min chunk size for S3 storage for multipart upload (PROJQUAY-7328) (#2949) 
* storage: Add min chunk size for S3 storage for multipart upload (PROJQUAY-7328)

Adds an option for min_chunk_size to the S3 storage provider
 2024-06-14 14:01:55 -04:00
Daniel Messer
e73d096b28 api: OCI compliant tag listing and pagination (PROJQUAY-6931) (#2884) 
implement OCI compliant pagination and tag listing

Signed-off-by: dmesser <dmesser@redhat.com>
 2024-06-13 11:28:02 +02:00
Harish Govindarajulu
074f35ee99 chore: Update alembic migration script to support sqlite db (PROJQUAY-7097) (#2839) 
* Add sqlite db support on quay start up

* Add batchmode to migration scripts to support sqlite db

* Add sqlite db to config-tool validator +  alembic migration

* Fix migration script to prevent db row locking

Added commit statement to ensure previous transaction is
completed before the next one within the same table

* Clean up unused sqlite volume

* Apply black formatting to migration scripts

* Address review comments

* Ensure py39-unit test runs the alembic migration on Sqlite

* Add static type checking for alembic config file name

* alembic remove commit and invalidate during migration

When disconnecting from db, alembic tries to rollback
causing PendingRollbackError

* Bump go version in config-tool Dockerfile

* Explicitly commit transaction to prevent db table locking

* Clean up + remove debug statements

* Undo database secret key change

* Add TEST_DATABASE_URI to py39-unit to run unit test with sqlite db

* Drop index before dropping column to prevent sqlite error

* Add test coverage + address last set of reviews

---------

Signed-off-by: harishsurf <hgovinda@redhat.com>
 2024-06-12 13:57:32 -04:00
Oleg Bulatov
98c44a1858 chore: remove unused jwt image (#2946) 2024-06-12 15:40:17 +00:00
Ivan Bazulic
6392ca972a secscan: Fix Slack notification creation on initial index (PROJQUAY-7037) (#2923) 
* secscan: Fix Slack notification creation on initial index (PROJQUAY-7037)
This fixes the Slack and e-mail notifications when images are indexed on initial push, where `tags` information was missing. If an image is a manifest child, instead of the tag, we provide a full SHA digest to the client.
Also adds the ability to filter security vulnerabilites depending on their severity. If the `NOTIFICATION_MIN_SEVERITY_ON_NEW_INDEX` is not set in the `config.yaml` file, we will automatically create notifications only for vulnerabilities marked "high" or "critical". This variable can take values defined here:

3248a72da6/util/secscan/__init__.py (L1)

Example:

```
NOTIFICATION_MIN_SEVERITY_ON_NEW_INDEX: Medium
```

* Removed superfulous debug statements

* Add default to config.yaml, remove extra comment

* Fix isort sorting

* Update vulnerability_found.html

* Update vulnerability_found.html

* Isort formatting fix

* Update vulnerability_found.html
 2024-06-12 09:51:11 -04:00
Ivan Bazulic
ac12b5243e security: Add Vary header to 404 responses (PROJQUAY-7304) (#2938) 
Add `Vary: Origin` header to the 404 responses to instruct browsers (and other utilities) to cache various requests properly (based on their origin) in order to avoid cache poisoning. See the [W3C security details](https://www.w3.org/TR/2020/SPSD-cors-20200602/#resource-security) for more information.
 2024-06-11 14:21:00 -04:00
dependabot[bot]
ac5d3cb7b4 build(deps): bump authlib from 1.2.1 to 1.3.1 (#2937) 
Bumps [authlib](https://github.com/lepture/authlib) from 1.2.1 to 1.3.1.
- [Release notes](https://github.com/lepture/authlib/releases)
- [Changelog](https://github.com/lepture/authlib/blob/master/docs/changelog.rst)
- [Commits](https://github.com/lepture/authlib/compare/v1.2.1...v1.3.1)

---
updated-dependencies:
- dependency-name: authlib
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-11 14:08:41 -04:00
Marcus Kok
85ecb7cbfd ui: show 'unlimited' if private repo count is over max number (PROJQUAY-7016) (#2824) 
show 'unlimited' if private repo count is over max number
 2024-06-11 08:59:07 -04:00
Brandon Caton
d1124350ba api: adding endpoints to FEATURE_SUPERUSERS_FULL_ACCESS (PROJQUAY-7045) (#2924) 
Adding permissions to additional endpoints when FEATURE_SUPERUSERS_FULL_ACCESS is enabled
 2024-06-07 14:10:50 -04:00
Kenny Lee Sin Cheong
4546163e83 registry: implements the OCI 1.1 referrers API (PROJQUAY-7280) (#2597) 
* registry: implements the OCI 1.1 referrers API

Migrations:
- Adds a subject column for lookup
- Adds a subject_backfilled column to track status of the backfilling
of existing manifests
- Adds a manifest_json column making use of postgres' JSONB support,
for future use.

Manifestsubjectbackfillworker: Indexes existing manifests for possible
existing subject field.

* Deprecate IGNORE_UNKNOWN_MEDIATYPES

* Cleanup
 2024-06-07 13:28:13 -04:00
Marcus Kok
1cc6d5292d marketplace: check for terminated subscriptions when fetching details (PROJQUAY-7035) (#2834) 
check for terminated subscriptions when fetching details
 2024-06-06 18:33:32 +00:00
Syed Ahmed
ec2ee2f98e storage: Add S3 optimization for CloudFlare provider (PROJQUAY-7267) (#2913) 
This adds the optimization in CloudFlare where if a request is from the primary region then instead of redirecting to the CDN, we return the S3 URL to save egress cost
 2024-06-06 14:13:14 -04:00
Marcus Kok
a35009a9cf ui: show repo count in marketplace UI (PROJQUAY-7185) (#2875) 
ui: show repo count in marketplace UI
 2024-06-06 09:11:40 -04:00
Brandon Caton
65e727086a ldap: allow global readonly superuser to be filtered (PROJQUAY-7044) (#2917) 
Allow global readonly superuser to be specified via LDAP.
 2024-06-04 15:19:37 -04:00
Daniel Messer
3248a72da6 logs: adding support for Splunk HTTP Event collectors as producers (PROJQUAY-7124) (#2855) 
adding support for Splunk HTTP Event collectors as producers

Signed-off-by: dmesser <dmesser@redhat.com>
 2024-05-31 11:58:15 +02:00
Oleg Bulatov
18f6ca5378 build(deps): bump chardet from 3.0.4 to 5.2.0 (#2915) 2024-05-30 13:49:31 +00:00
Oleg Bulatov
579dc474ca build(deps): bump cachetools from 4.0.0 to 5.3.3 (#2912) 
* build(deps): bump cachetools from 4.0.0 to 5.3.3

* chore: changes for cachetools 5.x
 2024-05-29 13:28:49 -04:00
dependabot[bot]
f04fd05385 build(deps): bump requests from 2.31.0 to 2.32.2 (#2908) 
Bumps [requests](https://github.com/psf/requests) from 2.31.0 to 2.32.2.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.31.0...v2.32.2)

---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-27 12:58:41 -04:00
dependabot[bot]
527286304f build(deps): bump oslo-serialization from 2.29.2 to 5.4.0 (#2699) 
Bumps [oslo-serialization](https://docs.openstack.org/oslo.serialization/latest/) from 2.29.2 to 5.4.0.

---
updated-dependencies:
- dependency-name: oslo-serialization
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-20 10:03:04 +02:00
dependabot[bot]
3166c5fed9 build(deps): bump pillow from 10.0.1 to 10.3.0 (#2804) 
* build(deps): bump pillow from 10.0.1 to 10.3.0

Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.0.1 to 10.3.0.
- [Release notes](https://github.com/python-pillow/Pillow/releases)
- [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst)
- [Commits](https://github.com/python-pillow/Pillow/compare/10.0.1...10.3.0)

---
updated-dependencies:
- dependency-name: pillow
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* chore: Change Pillow to pillow in requirements.txt

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Oleg Bulatov <obulatov@redhat.com>
 2024-05-16 23:00:31 +02:00
dependabot[bot]
d6664d54b8 build(deps): bump @babel/traverse from 7.17.10 to 7.23.2 in /web (#2415) 
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.17.10 to 7.23.2.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse)

---
updated-dependencies:
- dependency-name: "@babel/traverse"
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:22:35 +02:00
dependabot[bot]
76459cc16f build(deps-dev): bump @typescript-eslint/eslint-plugin from 5.19.0 to 5.62.0 in /web (#2688) 
build(deps-dev): bump @typescript-eslint/eslint-plugin in /web

Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 5.19.0 to 5.62.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.62.0/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:21:44 +02:00
dependabot[bot]
73060011e3 build(deps): bump follow-redirects from 1.15.4 to 1.15.6 in /web (#2764) 
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.4 to 1.15.6.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.4...v1.15.6)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:21:16 +02:00
dependabot[bot]
003fa3547e build(deps): bump golang.org/x/crypto from 0.21.0 to 0.23.0 in /config-tool (#2870) 
build(deps): bump golang.org/x/crypto in /config-tool

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.21.0 to 0.23.0.
- [Commits](https://github.com/golang/crypto/compare/v0.21.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:19:52 +02:00
dependabot[bot]
077fbae741 build(deps-dev): bump types-enum34 from 1.1.1 to 1.1.8 (#2383) 
Bumps [types-enum34](https://github.com/python/typeshed) from 1.1.1 to 1.1.8.
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-enum34
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:01:10 +02:00
dependabot[bot]
13cd79aa6f build(deps-dev): bump black from 22.3.0 to 24.4.2 (#2849) 
Bumps [black](https://github.com/psf/black) from 22.3.0 to 24.4.2.
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](https://github.com/psf/black/compare/22.3.0...24.4.2)

---
updated-dependencies:
- dependency-name: black
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:00:38 +02:00
dependabot[bot]
357e88ef08 build(deps): bump tqdm from 4.66.1 to 4.66.4 (#2861) 
Bumps [tqdm](https://github.com/tqdm/tqdm) from 4.66.1 to 4.66.4.
- [Release notes](https://github.com/tqdm/tqdm/releases)
- [Commits](https://github.com/tqdm/tqdm/compare/v4.66.1...v4.66.4)

---
updated-dependencies:
- dependency-name: tqdm
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 18:00:11 +02:00
Oleg Bulatov
42d0889e31 chore: Bump codecov/codecov-action to v4 (#2881) 2024-05-16 15:53:54 +00:00
dependabot[bot]
a78423c582 build(deps-dev): bump types-toposort from 1.10.0.0 to 1.10.0.1 (#2373) 
Bumps [types-toposort](https://github.com/python/typeshed) from 1.10.0.0 to 1.10.0.1.
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-toposort
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:20:43 +02:00
dependabot[bot]
fd6a35f1ea build(deps): bump tqdm from 4.66.1 to 4.66.3 (#2859) 
Bumps [tqdm](https://github.com/tqdm/tqdm) from 4.66.1 to 4.66.3.
- [Release notes](https://github.com/tqdm/tqdm/releases)
- [Commits](https://github.com/tqdm/tqdm/compare/v4.66.1...v4.66.3)

---
updated-dependencies:
- dependency-name: tqdm
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:10:03 +02:00
dependabot[bot]
507574e993 build(deps): bump gunicorn from 21.2.0 to 22.0.0 (#2825) 
Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 21.2.0 to 22.0.0.
- [Release notes](https://github.com/benoitc/gunicorn/releases)
- [Commits](https://github.com/benoitc/gunicorn/compare/21.2.0...22.0.0)

---
updated-dependencies:
- dependency-name: gunicorn
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:08:36 +02:00
dependabot[bot]
527a72914c build(deps): bump express from 4.17.3 to 4.19.2 in /web (#2799) 
Bumps [express](https://github.com/expressjs/express) from 4.17.3 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.3...4.19.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:07:15 +02:00
dependabot[bot]
71b9ab58db build(deps-dev): bump express from 4.18.2 to 4.19.2 (#2800) 
Bumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.18.2...4.19.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:06:45 +02:00
dependabot[bot]
763a4b02ee build(deps): bump jinja2 from 3.1.3 to 3.1.4 (#2866) 
Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.3 to 3.1.4.
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/jinja/compare/3.1.3...3.1.4)

---
updated-dependencies:
- dependency-name: jinja2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:06:14 +02:00
dependabot[bot]
0c87ee10ff build(deps): bump idna from 3.4 to 3.7 (#2815) 
Bumps [idna](https://github.com/kjd/idna) from 3.4 to 3.7.
- [Release notes](https://github.com/kjd/idna/releases)
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst)
- [Commits](https://github.com/kjd/idna/compare/v3.4...v3.7)

---
updated-dependencies:
- dependency-name: idna
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:03:59 +02:00
dependabot[bot]
2332a05162 build(deps-dev): bump black from 22.3.0 to 24.3.0 (#2779) 
Bumps [black](https://github.com/psf/black) from 22.3.0 to 24.3.0.
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](https://github.com/psf/black/compare/22.3.0...24.3.0)

---
updated-dependencies:
- dependency-name: black
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-16 16:02:01 +02:00
Sunandadadi
d10c868edc ui: send recovery email option in superusers panel (PROJQUAY-7195) (#2879) 2024-05-15 17:41:00 -04:00
Marcus Kok
dbfb47d6fb marketplace: change redhatsubscriptions model to return a list of customer ids (PROJQUAY-7129) (#2868) 
* marketplace: change redhatsubscriptions model to return a list of customer ids (PROJQUAY-7129)

* Use list comprehension in model and expect to return None if no rows are
returned

* fix behavior for reconciler and fix unit test for reconciler
 2024-05-09 11:51:06 -04:00
Marcus Kok
a69a450736 marketplace: change api call to return array of customer ids (PROJQUAY-7129) (#2867) 
Changes marketplace api handler to now return a list of all web customer ids for a user.

Allows quay.io to keep track of all web customer ids instead of just personal types.
 2024-05-09 09:31:02 -04:00
Daniel Messer
470141eb87 api: human-readable limit requests for quotas (PROJQUAY-7122) (#2847) 
* human-readable limit requests for quotas

Signed-off-by: dmesser <dmesser@redhat.com>

* guidance on limit format errors

Signed-off-by: dmesser <dmesser@redhat.com>

---------

Signed-off-by: dmesser <dmesser@redhat.com>
 2024-05-03 14:37:00 -04:00
Sunandadadi
6bf6c2b181 teamsync: run team sync worker for teams synced via ldap or keystone (PROJQUAY-6762) (#2788) 
* teamsync: run team sync worker for teams synced via ldap or keystone (PROJQUAY-6762)

* fix comment

* adding test

* isort fix
 2024-04-29 13:18:04 -04:00
Daniel Messer
165dc6cd97 ui: fix locale and layout issues with the time picker in tag expiration modal (PROJQUAY-7069) (#2840) 
* adjust date formatting for browser locale

Signed-off-by: dmesser <dmesser@redhat.com>
 2024-04-26 22:06:48 +02:00
Sunandadadi
f0bce432c2 ui: disable invited tab when team is synced (PROJQUAY-6831) (#2838) 
* ui: disable invited tab when team is synced (PROJQUAY-6831)

* using strict comparision
 2024-04-26 09:17:00 -04:00
Daniel Messer
17c41ff45e ui: overview page fixes (PROJQUAY-7107) (#2843) 
* dark mode, layout and content fixes

Signed-off-by: dmesser <dmesser@redhat.com>

* dark mode support

Signed-off-by: dmesser <dmesser@redhat.com>

* adjust test expectations

Signed-off-by: dmesser <dmesser@redhat.com>

* correct expected location

Signed-off-by: dmesser <dmesser@redhat.com>

---------

Signed-off-by: dmesser <dmesser@redhat.com>
 2024-04-26 15:09:14 +02:00
Sunandadadi
05388866db ui: fixing failing cypress test (PROJQUAY-7106) (#2841) 2024-04-26 08:29:44 -04:00
Patrick Martin
3ee51a6404 observability: move catchpoint_datasource to new cluster (PROJQUAY-7007) (#2816) 
Move catchpoint_datasource to new cluster

signalfx has moved on that new cluster recently
 2024-04-24 16:16:55 -04:00
Sunandadadi
81682c96d0 oidc: ask for group object id for azure oauth login (PROJQUAY-6917) (#2805) 
* oidc: ask for group object id for azure oauth login (PROJQUAY-6917)

* fixing tests

* adding tests
 2024-04-24 10:18:31 -04:00