docker/quay
1
0
Fork 0
mirror of https://github.com/quay/quay.git synced 2026-01-26 06:21:37 +03:00
Code Activity
12,264 Commits 2,636 Branches 136 Tags
v3.13.5
Commit Graph

12264 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
OpenShift Cherrypick Robot
0d9221b4af [redhat-3.13] cve: bumping cross-spawn to 6.0.6 and 7.0.6 (PROJQUAY-8210) (#3832) 
deps: update cross-spawn from 6.0.x to 6.0.6 deps: update cross-spawn from 7.0.x to 7.0.6
v3.13.5 		2025-04-29 18:51:10 -03:00
OpenShift Cherrypick Robot
2060e0967e [redhat-3.13] Reverting PROJQUAY-8536 (#3836) 
* Revert "bug: Adding allow hidden flag while looking up for manifests (PROJQUAY-8536) (#3722)"

This reverts commit f0c153fab5.

* Revert "proxy: moving manifest check to after upstream manifest fetch (PROJQUAY-8536) (#3814)"

This reverts commit 944edd064b.

---------

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-04-29 14:33:42 -04:00
Brandon Caton
67ba9dfba0 updating jquery in package lock (#3828) 2025-04-28 14:48:57 -04:00
OpenShift Cherrypick Robot
74e56e1438 [redhat-3.13] logging: fix unreferenced variable from logging (PROJQUAY-8136) (#3821) 
logging: fix unreferenced variable from logging (PROJQUAY-8136)

Co-authored-by: Kenny Lee Sin Cheong <kenny.lee28@gmail.com>
 2025-04-28 09:59:15 -04:00
OpenShift Cherrypick Robot
24ae19ddfd [redhat-3.13] proxy: moving manifest check to after upstream manifest fetch (PROJQUAY-8536) (#3815) 
moving manifest check to after upstream manifest fetch

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-04-24 15:06:18 -04:00
OpenShift Cherrypick Robot
992225e048 [redhat-3.13] gc: garbage collect manifests not targetted by any tags when deleting repository (PROJQUAY-8136) (#3805) 
* gc: garbage collect manifests not targetted by any tags when deleting repository (PROJQUAY-8136)

* test untagged manifest removal

---------

Co-authored-by: Kenny Lee Sin Cheong <kenny.lee28@gmail.com>
 2025-04-22 18:18:37 +00:00
OpenShift Cherrypick Robot
0efff5ff76 [redhat-3.13] cve: upgrade elliptic version to 6.5.7 (PROJQUAY-7595) (#3769) 
* cve: upgrade elliptic version to 6.5.7 (PROJQUAY-7595)

* added package-lock with karma-webpack update

---------

Co-authored-by: shudeshp <shudeshp@redhat.com>
Co-authored-by: Brandon Caton <bcaton@redhat.com>
 2025-04-17 10:48:32 -04:00
OpenShift Cherrypick Robot
361b95d801 [redhat-3.13] chore: move github runners to ubuntu-22.04 (PROJQUAY-8805) (#3790) 
This is an automated cherry-pick of #3783

---------

Co-authored-by: Sunandadadi <sunanda.3094@gmail.com>
 2025-04-16 15:07:36 -04:00
github-actions[bot]
82d5f5161f v3.13.5 Changelog Bump (#3737) 
chore: v3.13.5 changelog bump (PROJQUAY-8689)

Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: bcaton85 <bcaton85@users.noreply.github.com>
 2025-03-25 15:22:05 -04:00
OpenShift Cherrypick Robot
88a70d0ccc [redhat-3.13] deps: bump gunicorn (PROJQUAY-8726) (#3732) 
remove package-lock.json from the pr

Co-authored-by: sayalibhavsar <sayalibhavsar9009@gmail.com>
 2025-03-25 15:07:01 -04:00
OpenShift Cherrypick Robot
b85b5e3cc6 [redhat-3.13] bug: Adding allow hidden flag while looking up for manifests (PROJQUAY-8536) (#3726) 
When an image is pulled by digest, a temp tag is created to prevent the manifest from being garbage collected. This is true when a manifest list is pulled by tag as well. However, if this temporary tag expires (default is 1 day for proxied organizations) and the same manifest is pulled again by digest, the system attempts to create the manifest again, leading to an integrity error because the manifest already exists in the database.
 2025-03-20 13:33:40 -04:00
OpenShift Cherrypick Robot
bdd7f89428 [redhat-3.13] chore: upgrade jinja to 3.1.6 (PROJQUAY-8657) (#3710) 
chore: upgrade jinja to 3.1.6 (PROJQUAY-8657)

Co-authored-by: Jonathan King <jonathankingfc@gmail.com>
Co-authored-by: Brandon Caton <bcaton@redhat.com>
 2025-03-18 13:25:02 -04:00
OpenShift Cherrypick Robot
48691d648f storage: Modify the STS S3 implementation of the storage backend to use Web Identity Tokens when available (PROJQUAY-8692) (#3715) 
Backport the Quay STS token file implementation from https://github.com/quay/quay/pull/3670

---------

Co-authored-by: Mathieu Bouchard <mathieu.bouchard@mcn.gouv.qc.ca>
Co-authored-by: Mathieu Bouchard <83231959+bouchardmathieu-qc@users.noreply.github.com>
 2025-03-13 15:25:34 -04:00
OpenShift Cherrypick Robot
0a4e248ecb [redhat-3.13] api: put /superuser/users/<username> will now show up in swagger (PROJQUAY-7579) (#3702) 
remove internal-only decorator from PUT request

Co-authored-by: sayali bhavsar <sayalibhavsar9009@gmail.com>
 2025-03-06 10:00:05 -05:00
OpenShift Cherrypick Robot
460f4f8451 [redhat-3.13] chore: Change in the CIDR for Z (#3696) 
chore: Change in the CIDR for Z

Co-authored-by: sivaramsingana <47631665+sivaramsingana@users.noreply.github.com>
 2025-03-05 13:09:34 -05:00
OpenShift Cherrypick Robot
fceab15a5b [redhat-3.13] chore: fix for wide open ssh for vsi for Z (#3644) 
fix for wide open ssh for vsi

Co-authored-by: sivaramsingana <47631665+sivaramsingana@users.noreply.github.com>
v3.13.4 		2025-02-07 08:53:14 -05:00
github-actions[bot]
a270d52d11 v3.13.4 Changelog Bump (#3633) 
chore: v3.13.4 changelog bump (PROJQUAY-8514)

Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: bcaton85 <bcaton85@users.noreply.github.com>
 2025-02-04 15:24:43 -05:00
Brandon Caton
0915dcd107 deps: updating jquery to 3.5.0 (PROJQUAY-8522) (#3631) 
deps: updating jquery to 3.5.0 (PROJQUAY-8522) (#3629)

updating jquery to 3.5.0
 2025-02-04 15:21:48 -05:00
OpenShift Cherrypick Robot
4eb740503f [redhat-3.13] endpoints(repository): fixing repository return with starred repos to paged response (PROJQUAY-8450) (#3600) 
When setting repositories in the Quay UI as starred, a 500 error occurs and renders the UI use-less due to starred queries are not paged.

---------

Co-authored-by: Michaela Lang <milang@redhat.com>
Co-authored-by: Brandon Caton <bcaton@redhat.com>
 2025-02-03 13:21:53 -05:00
OpenShift Cherrypick Robot
96ff97e7df [redhat-3.13] ui: adding under_maintenance state to status indicator (PROJQUAY-8507) (#3625) 
Adding under_maintenance state to status indicator

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-02-03 12:43:34 -05:00
OpenShift Cherrypick Robot
ff77a0d5d9 [redhat-3.13] updating actions/upload-artifact to v4 (#3601) 
updating actions/upload-artifact to v4

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-01-30 13:55:35 -05:00
github-actions[bot]
177b6a4695 v3.13.3 Changelog Bump (#3559) 
chore: v3.13.3 changelog bump (PROJQUAY-8409)

Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: bcaton85 <bcaton85@users.noreply.github.com>
v3.13.3 		2025-01-10 09:28:44 -05:00
OpenShift Cherrypick Robot
68fa008d51 [redhat-3.13] teamsync: peewee integrity error check on teamsync (PROJQUAY-7747) (#3557) 
* teamsync: Ignore Peewee Integrity Error on teamsync (projquay-7747)

* isort fix and removing with_dbtransaction from get query

* adding tests and check if user is a member of team

* fixes based on review

* fixes

* fixing tests

* minor fixes

* reverting UserAlreadyExists exception

---------

Co-authored-by: Sunandadadi <sunanda.3094@gmail.com>
 2025-01-09 21:17:13 +00:00
OpenShift Cherrypick Robot
b1870400c1 [redhat-3.13] dep: updating css-loader to 6.11.0 (PROJQUAY-8297) (#3545) 
updating css-loader to 6.11.0

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-01-07 19:12:49 +00:00
OpenShift Cherrypick Robot
b433afeedf [redhat-3.13] dep: updating jinja2 to 3.1.5 (PROJQUAY-8375) (#3544) 
updating jinja2 to 3.1.5

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-01-06 19:14:22 +00:00
OpenShift Cherrypick Robot
03e7a1d9c7 [redhat-3.13] dep: upgrading actions/download-artifact to v4 (PROJQUAY-8379) (#3531) 
upgrading actions/download-artifact to v4

Co-authored-by: bcaton <bcaton@redhat.com>
 2025-01-02 17:38:03 +00:00
OpenShift Cherrypick Robot
cfd93edafe [redhat-3.13] ui: fixing cypress flake (PROJQUAY-8352) (#3510) 
There's a flake in the web/cypress/e2e/repository-permissions.cy.ts test where it is intermittently unable to type in the "Search for user, add/create robot account" search dropdown which occasionally fails the test. Since updating cypress the test fails consistently. This changes waits and clicks on the input allowing the type to complete and the dropdown to populate.

Co-authored-by: bcaton <bcaton@redhat.com>
 2024-12-13 12:08:01 -05:00
OpenShift Cherrypick Robot
6201712950 [redhat-3.13] deps: downgrading cryptography (#3493) 
downgrading cryptography

Co-authored-by: bcaton <bcaton@redhat.com>
v3.13.2 		2024-12-10 13:02:57 -05:00
OpenShift Cherrypick Robot
4c02c1105c [redhat-3.13] deps: adding maturin to build deps (PROJQUAY-8308) (#3489) 
adding maturin to build deps

Co-authored-by: bcaton <bcaton@redhat.com>
 2024-12-10 10:33:00 -05:00
OpenShift Cherrypick Robot
9b83bd6b9f [redhat-3.13] deps: Upgrade cryptography package to 43.0.3 (PROJQUAY-7032) (#3442) 
deps: Upgrade cryptography package to 43.0.3 (PROJQUAY-7032)

Co-authored-by: Kenny Lee Sin Cheong <kenny.lee28@gmail.com>
Co-authored-by: Brandon Caton <bcaton@redhat.com>
 2024-12-09 15:43:48 -05:00
github-actions[bot]
9d2beb6fdd v3.13.2 Changelog Bump (#3473) 
chore: v3.13.2 changelog bump (PROJQUAY-8247)

Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: bcaton85 <bcaton85@users.noreply.github.com>
 2024-12-06 09:35:30 -05:00
OpenShift Cherrypick Robot
5702a0f1bd [redhat-3.13] dep: updating axios (PROJQUAY-7657) (#3465) 
Upgrading axios

---------

Co-authored-by: bcaton <bcaton@redhat.com>
 2024-12-05 17:15:32 -05:00
OpenShift Cherrypick Robot
2c38a0854f [redhat-3.13] auth: Implement is_restricted_user for federated auth systems (PROJQUAY-8208) (#3459) 
* auth: Implement is_restricted_user for OIDC and allow super users to create content regardless of set restriction (PROJQUAY-8208) Currently, if OIDC is set as an authentication mechanism and restricted users is set, Quay will return a `501 Not Implemented` on invocation. Now, Quay will properly check the restricted user whitelist for federated users. Additionally, if user restriction is in place and super user's username was **not** explicitly whitelisted, super users would not be able to create new content inside the registry. Now, the username is explicitly checked in the UI to allow super users to create both organizations and repos regardless of restricted users whitelist.

* Add tests

* Add tests for usermanager

---------

Co-authored-by: Ivan Bazulic <ibazulic@redhat.com>
 2024-12-05 16:24:46 +00:00
OpenShift Cherrypick Robot
96e3f3b06b [redhat-3.13] auth: Remove robot references from scopes list (PROJQUAY-8269) (#3458) 
auth: Remove robot references from scopes list (PROJQUAY-0000) Removes references from the Oauth scopes page concerning robot accounts. Oauth tokens currently cannot be assigned to robot accounts so current wording creates confusion.

Co-authored-by: Ivan Bazulic <ibazulic@redhat.com>
 2024-12-05 10:05:12 -05:00
OpenShift Cherrypick Robot
e97bbca8a0 [redhat-3.13] ui: Add proxy cache config UI to org settings (PROJQUAY-7697) (#3428) 
* ui: Add proxy cache config UI to org settings (PROJQUAY-7697)

* Fix alerts + reset input fields on user action

* Add cypress test for proxy cache config

* enable proxy cache for cypress test

* Propagate backend api error to UI

* Add additional cypress test coverage

* Fix eslint error

---------

Signed-off-by: harishsurf <hgovinda@redhat.com>
Co-authored-by: harishsurf <hgovinda@redhat.com>
 2024-11-27 14:43:20 +05:30
OpenShift Cherrypick Robot
046b16eacb [redhat-3.13] deps: bump protobuf (PROJQUAY-7970) (#3422) 
* deps: bump protobuf (PROJQUAY-7970)

Signedoff-by: harishsurf <hgovinda@redhat.com>

* Regenerate .proto buildman_pb2*.py files

Bumping protobuf to 5.28.2 requires regenerating python files
from .proto file

* Bump grpcio + fix import

* Add generated buildman_pb2.pyi file

* Add ignore type check for import

* Fix black + isort formatting

---------

Co-authored-by: harishsurf <hgovinda@redhat.com>
 2024-11-25 20:37:52 +05:30
OpenShift Cherrypick Robot
3317794691 [redhat-3.13] ui: removing bootbox (#3416) 
removing bootbox

Co-authored-by: bcaton <bcaton@redhat.com>
 2024-11-22 14:02:52 -05:00
OpenShift Cherrypick Robot
56d5b76b9c [redhat-3.13] api: allowing superuser to read catalog endpoint (PROJQUAY-8023) (#3402) 
* allowing superuser to read catalog endpoint

* updating with return_all param

---------

Co-authored-by: bcaton <bcaton@redhat.com>
v3.13.1 		2024-11-14 09:57:13 -05:00
github-actions[bot]
dcbe24e064 v3.13.1 Changelog Bump (#3398) 
chore: v3.13.1 changelog bump (PROJQUAY-8203)

Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: bcaton85 <bcaton85@users.noreply.github.com>
 2024-11-11 14:33:38 -05:00
OpenShift Cherrypick Robot
bdcd27965f [redhat-3.13] build(deps): bump jmespath from 0.9.4 to 1.0.1 in requirements.txt (PROJQUAY-7031) (#3392) 
bumped python-jmespath to latest(1.0.1) version to avoid systax warnings

Co-authored-by: Andreas Bleischwitz <ableisch@redhat.com>
 2024-11-08 13:32:02 -05:00
OpenShift Cherrypick Robot
f3d3c86b69 [redhat-3.13] conf(nginx): change forwarded header removing host (PROJQUAY-8024) (#3386) 
According to HCP support, the Ingress Load Balancer rejects requests with a `host=...;` in the `forwarded` Header.

The PR changes that only the originating Client ($remote_addr) is
injected in the request as

```
Host: ....
Forwarded: for=127.0.0.1;
...
```

Co-authored-by: Michaela Lang <milang@redhat.com>
 2024-11-07 16:13:23 +00:00
OpenShift Cherrypick Robot
1e5a519a60 [redhat-3.13] ui: Update regex pattern helper text for validating team name (PROJQUAY-8110) (#3354) 
* ui: update regex pattern in helpertext for team name(PROJQUAY-8110)

* old ui: update regex pattern for validating team name

---------

Signed-off-by: harishsurf <hgovinda@redhat.com>
Co-authored-by: harishsurf <hgovinda@redhat.com>
 2024-11-05 20:00:37 +00:00
OpenShift Cherrypick Robot
9de00c4adf [redhat-3.13] build(deps): bump werkzeug from 3.0.3 to 3.0.6 (#3373) 
build(deps): bump werkzeug from 3.0.3 to 3.0.6

Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.3 to 3.0.6.
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/werkzeug/compare/3.0.3...3.0.6)

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-04 15:34:31 +00:00
OpenShift Cherrypick Robot
8418b7aa79 [redhat-3.13] ui: Render namespace values for <SelectOption> dropdown under Create Repository modal (PROJQUAY-8118) (#3361) 
* ui: Render namespace values for <SelectOption> dropdown

Signed-off-by: harishsurf <hgovinda@redhat.com>

* fix cypress test

---------

Signed-off-by: harishsurf <hgovinda@redhat.com>
Co-authored-by: harishsurf <hgovinda@redhat.com>
 2024-11-04 09:56:29 -05:00
OpenShift Cherrypick Robot
199f041d68 [redhat-3.13] ui: show user autoprune policies under repo autoprune policies tab (PROJQUAY-8093) (#3360) 
ui: show user autoprune policies under repo autoprune policies tab (PROJQUAY-8093)

Co-authored-by: Sunandadadi <sunanda.3094@gmail.com>
v3.13.0 		2024-10-24 15:53:53 +00:00
github-actions[bot]
5ca10b5fb4 v3.13.0 Changelog Bump (#3358) 
chore: v3.13.0 changelog bump (PROJQUAY-7957)

Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: bcaton85 <bcaton85@users.noreply.github.com>
 2024-10-23 15:17:45 -04:00
OpenShift Cherrypick Robot
31edc93514 [redhat-3.13] ui: conditionally support custom tag expiration durations (PROJQUAY-6700) (#3352) 
conditionally support custom tag expiration durations with reliable human-readable display

Signed-off-by: dmesser <dmesser@redhat.com>
Co-authored-by: dmesser <dmesser@redhat.com>
 2024-10-21 17:12:57 +00:00
OpenShift Cherrypick Robot
b19ec20fb6 [redhat-3.13] build(deps): bump cookie and socket.io in /config-tool/pkg/lib/editor (#3351) 
build(deps): bump cookie and socket.io in /config-tool/pkg/lib/editor

Bumps [cookie](https://github.com/jshttp/cookie) and [socket.io](https://github.com/socketio/socket.io). These dependencies needed to be updated together.

Updates `cookie` from 0.4.2 to 0.7.2
- [Release notes](https://github.com/jshttp/cookie/releases)
- [Commits](https://github.com/jshttp/cookie/compare/v0.4.2...v0.7.2)

Updates `socket.io` from 4.6.1 to 4.8.0
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)
- [Commits](https://github.com/socketio/socket.io/compare/4.6.1...socket.io@4.8.0)

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-10-21 14:11:26 +00:00
OpenShift Cherrypick Robot
1ba004e4c0 [redhat-3.13] notifications: fetch autoprune tags with multiple policies for image expiry notification (PROJQUAY-8117) (#3345) 
* notifications: fetch autoprune tags with multiple policies for image expiry notification(PROJQUAY-8117)

* don't fetch notifications if tags expiry is greater than notification days + add tests

---------

Co-authored-by: Sunandadadi <sunanda.3094@gmail.com>
 2024-10-18 20:55:05 +00:00
OpenShift Cherrypick Robot
3a9984f399 [redhat-3.13] autoprune: order policies by method before execution (PROJQUAY-8104) (#3336) 
autoprune: order policies by method before execution (PROJQUAY-8104)

Co-authored-by: Sunandadadi <sunanda.3094@gmail.com>
 2024-10-16 21:45:12 +00:00