Caleb Doxsey
790c11b368
core/zero: add organization id and cluster id to bootstrap config ( #5275 )
2024-09-10 11:31:45 -06:00
Denis Mishin
db52d0cfbd
k8s: fix manifests ( #5274 )
2024-09-10 11:05:54 -04:00
Kenneth Jenkins
3dadcf1825
add v0.27.0 changelog ( #5271 )
...
* add v0.27.0 changelog
* formatting, remove "New Contributors" section
* sort lines alphabetically
* accidentally deleted ':'s after category tags
* rm reverted pr #5159
---------
Co-authored-by: Denis Mishin <dmishin@pomerium.com>
2024-09-10 10:01:46 -04:00
Denis Mishin
bf30770c08
ci: update k8s manifests before v0.27.0 release ( #5270 )
...
Set image to `v0.27.0`
2024-09-10 10:01:11 -04:00
Joe Kralicky
653d8f9594
Revert "config: allow overriding port numbers using environment variables ( #5194 )" ( #5273 )
...
This reverts commit fdefcf9a16
2024-09-09 19:30:48 -04:00
Caleb Doxsey
dad954ae16
core/logging: change log.Error function ( #5251 )
...
* core/logging: change log.Error function
* use request id
2024-09-05 15:42:46 -06:00
Caleb Doxsey
97bf5edc54
core/ui: no-cache html, force back ( #5264 )
2024-09-05 10:39:50 -06:00
Caleb Doxsey
fb4ee25763
core/ui: update logo ( #5249 )
...
* update logo
* use base64
* reference local file
* use svg, resize
* purple logo
* bigger
* move logo
2024-09-05 18:13:06 +02:00
Denis Mishin
8a551e67bf
authorize: add request-id to error messages ( #5267 )
2024-09-05 11:54:37 -04:00
Caleb Doxsey
073d1564ba
core/envoy: allow TLS 1.3 ( #5263 )
2024-09-05 06:00:18 -06:00
Denis Mishin
ae584d02ed
zero/k8s: set externalTrafficPolicy: Local ( #5266 )
2024-09-04 22:26:07 -04:00
dependabot[bot]
c058b8a99c
chore(deps): bump the go group across 1 directory with 28 updates ( #5262 )
...
Bumps the go group with 20 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2 ) | `1.30.3` | `1.30.5` |
| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2 ) | `1.27.27` | `1.27.32` |
| [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2 ) | `1.58.3` | `1.61.1` |
| [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset ) | `1.13.0` | `1.14.2` |
| [github.com/cloudflare/circl](https://github.com/cloudflare/circl ) | `1.3.9` | `1.4.0` |
| [github.com/docker/docker](https://github.com/docker/docker ) | `27.1.1+incompatible` | `27.2.0+incompatible` |
| [github.com/envoyproxy/go-control-plane](https://github.com/envoyproxy/go-control-plane ) | `0.12.1-0.20240717153332-b7af5b7dab54` | `0.13.0` |
| [github.com/google/btree](https://github.com/google/btree ) | `1.1.2` | `1.1.3` |
| [github.com/mholt/acmez/v2](https://github.com/mholt/acmez ) | `2.0.1` | `2.0.2` |
| [github.com/minio/minio-go/v7](https://github.com/minio/minio-go ) | `7.0.74` | `7.0.76` |
| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa ) | `0.67.1` | `0.68.0` |
| [github.com/ory/dockertest/v3](https://github.com/ory/dockertest ) | `3.10.0` | `3.11.0` |
| [github.com/prometheus/common](https://github.com/prometheus/common ) | `0.55.0` | `0.58.0` |
| [github.com/rs/cors](https://github.com/rs/cors ) | `1.11.0` | `1.11.1` |
| [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go ) | `1.28.0` | `1.29.0` |
| [go.opentelemetry.io/otel/bridge/opencensus](https://github.com/open-telemetry/opentelemetry-go ) | `1.28.0` | `1.29.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc](https://github.com/open-telemetry/opentelemetry-go ) | `1.28.0` | `1.29.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlptrace](https://github.com/open-telemetry/opentelemetry-go ) | `1.28.0` | `1.29.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go ) | `1.28.0` | `1.29.0` |
| [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) | `0.190.0` | `0.196.0` |
Updates `github.com/aws/aws-sdk-go-v2` from 1.30.3 to 1.30.5
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/v1.30.3...v1.30.5 )
Updates `github.com/aws/aws-sdk-go-v2/config` from 1.27.27 to 1.27.32
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.27...config/v1.27.32 )
Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.58.3 to 1.61.1
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.58.3...service/s3/v1.61.1 )
Updates `github.com/bits-and-blooms/bitset` from 1.13.0 to 1.14.2
- [Release notes](https://github.com/bits-and-blooms/bitset/releases )
- [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.2 )
Updates `github.com/cloudflare/circl` from 1.3.9 to 1.4.0
- [Release notes](https://github.com/cloudflare/circl/releases )
- [Commits](https://github.com/cloudflare/circl/compare/v1.3.9...v1.4.0 )
Updates `github.com/docker/docker` from 27.1.1+incompatible to 27.2.0+incompatible
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v27.1.1...v27.2.0 )
Updates `github.com/envoyproxy/go-control-plane` from 0.12.1-0.20240717153332-b7af5b7dab54 to 0.13.0
- [Release notes](https://github.com/envoyproxy/go-control-plane/releases )
- [Changelog](https://github.com/envoyproxy/go-control-plane/blob/main/CHANGELOG.md )
- [Commits](https://github.com/envoyproxy/go-control-plane/commits/v0.13.0 )
Updates `github.com/google/btree` from 1.1.2 to 1.1.3
- [Commits](https://github.com/google/btree/compare/v1.1.2...v1.1.3 )
Updates `github.com/mholt/acmez/v2` from 2.0.1 to 2.0.2
- [Release notes](https://github.com/mholt/acmez/releases )
- [Commits](https://github.com/mholt/acmez/compare/v2.0.1...v2.0.2 )
Updates `github.com/minio/minio-go/v7` from 7.0.74 to 7.0.76
- [Release notes](https://github.com/minio/minio-go/releases )
- [Commits](https://github.com/minio/minio-go/compare/v7.0.74...v7.0.76 )
Updates `github.com/open-policy-agent/opa` from 0.67.1 to 0.68.0
- [Release notes](https://github.com/open-policy-agent/opa/releases )
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-policy-agent/opa/compare/v0.67.1...v0.68.0 )
Updates `github.com/ory/dockertest/v3` from 3.10.0 to 3.11.0
- [Release notes](https://github.com/ory/dockertest/releases )
- [Commits](https://github.com/ory/dockertest/compare/v3.10.0...v3.11.0 )
Updates `github.com/prometheus/client_golang` from 1.19.1 to 1.20.2
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.2 )
Updates `github.com/prometheus/common` from 0.55.0 to 0.58.0
- [Release notes](https://github.com/prometheus/common/releases )
- [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md )
- [Commits](https://github.com/prometheus/common/compare/v0.55.0...v0.58.0 )
Updates `github.com/rs/cors` from 1.11.0 to 1.11.1
- [Commits](https://github.com/rs/cors/compare/v1.11.0...v1.11.1 )
Updates `go.opentelemetry.io/otel` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/bridge/opencensus` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/metric` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/sdk` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/sdk/metric` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `go.opentelemetry.io/otel/trace` from 1.28.0 to 1.29.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.28.0...v1.29.0 )
Updates `golang.org/x/sys` from 0.23.0 to 0.24.0
- [Commits](https://github.com/golang/sys/compare/v0.23.0...v0.24.0 )
Updates `google.golang.org/api` from 0.190.0 to 0.196.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.190.0...v0.196.0 )
Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20240730163845-b1a4ccb954bf to 0.0.0-20240903143218-8af14fe29dc1
- [Commits](https://github.com/googleapis/go-genproto/commits )
Updates `google.golang.org/grpc` from 1.65.0 to 1.66.0
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.65.0...v1.66.0 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/config
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/bits-and-blooms/bitset
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/cloudflare/circl
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/docker/docker
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/envoyproxy/go-control-plane
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/google/btree
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: github.com/mholt/acmez/v2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: github.com/minio/minio-go/v7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: github.com/open-policy-agent/opa
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/ory/dockertest/v3
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/prometheus/common
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: github.com/rs/cors
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: go.opentelemetry.io/otel
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/bridge/opencensus
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/metric
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/sdk
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/sdk/metric
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: go.opentelemetry.io/otel/trace
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: golang.org/x/sys
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
- dependency-name: google.golang.org/genproto/googleapis/rpc
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: go
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: go
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-04 15:47:43 -06:00
Kenneth Jenkins
014824b525
proxy: deprecate the /.pomerium/jwt endpoint ( #5254 )
...
Disable the /.pomerium/jwt endpoint by default. Add a runtime flag to
temporarily opt out of the deprecation.
2024-09-04 11:22:18 -07:00
Kenneth Jenkins
2b84111058
config: sort runtime flags, name consistency ( #5255 )
...
Sort the runtime flag definitions alphabetically. Rename
envoy_resource_manager_enabled to just envoy_resource_manager for
consistency with the other flag names. (This flag hasn't been released
yet, so it should be OK to rename it.) Also add a doc comment.
2024-09-03 13:37:19 -07:00
dependabot[bot]
7c39084278
chore(deps): bump github.com/opencontainers/runc from 1.1.12 to 1.1.14 ( #5261 )
...
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc ) from 1.1.12 to 1.1.14.
- [Release notes](https://github.com/opencontainers/runc/releases )
- [Changelog](https://github.com/opencontainers/runc/blob/main/CHANGELOG.md )
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.12...v1.1.14 )
---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 13:14:00 -07:00
Denis Mishin
ce12e51cf5
zero/api: reset token and url cache if 401 is received ( #5256 )
...
zero/api: reset token cache if 401 is received
2024-09-03 15:40:28 -04:00
dependabot[bot]
a04d1a450c
chore(deps): bump the docker group with 2 updates ( #5258 )
...
Bumps the docker group with 2 updates: node and golang.
Updates `node` from `1ae9ba8` to `a4d1de4`
Updates `golang` from `4bda342` to `31dc846`
---
updated-dependencies:
- dependency-name: node
dependency-type: direct:production
dependency-group: docker
- dependency-name: golang
dependency-type: direct:production
dependency-group: docker
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 12:58:54 -06:00
dependabot[bot]
956cd281a4
chore(deps): bump the github-actions group with 6 updates ( #5259 )
...
Bumps the github-actions group with 6 updates:
| Package | From | To |
| --- | --- | --- |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.5.0` | `6.7.0` |
| [mikefarah/yq](https://github.com/mikefarah/yq ) | `4.44.2` | `4.44.3` |
| [google-github-actions/auth](https://github.com/google-github-actions/auth ) | `2.1.3` | `2.1.5` |
| [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud ) | `2.1.0` | `2.1.1` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.4` | `4.4.0` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.1.1` | `5.2.0` |
Updates `docker/build-push-action` from 6.5.0 to 6.7.0
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](5176d81f87...5cd11c3a4chttps://github.com/mikefarah/yq/releases )
- [Changelog](https://github.com/mikefarah/yq/blob/master/release_notes.txt )
- [Commits](f15500b20a...bbdd97482fhttps://github.com/google-github-actions/auth/releases )
- [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md )
- [Commits](71fee32a0b...62cf5bd3e4https://github.com/google-github-actions/setup-gcloud/releases )
- [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/main/CHANGELOG.md )
- [Commits](98ddc00a17...f0990588f1https://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...50769540e7https://github.com/actions/setup-python/releases )
- [Commits](39cd14951b...f677139bbe
2024-09-03 12:57:45 -06:00
dependabot[bot]
9c3a3387b0
chore(deps): bump busybox from 9ae97d3 to 8274294 in /.github in the docker group ( #5260 )
...
chore(deps): bump busybox in /.github in the docker group
Bumps the docker group in /.github with 1 update: busybox.
Updates `busybox` from `9ae97d3` to `8274294`
---
updated-dependencies:
- dependency-name: busybox
dependency-type: direct:production
dependency-group: docker
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 12:56:52 -06:00
Joe Kralicky
d149b2d178
zero: generate error methods for response types ( #5252 )
2024-08-30 16:21:43 -04:00
nikhil-pomerium
ccd8a1d5a2
Update README.md ( #5253 )
...
Adding plug for Pomerium Zero.
2024-08-30 10:43:23 -06:00
Denis Mishin
5fd8cf60d5
zero/k8s: use deployments ( #5248 )
...
* zero/k8s: use deployments
* secret mount readonly
Co-authored-by: Joe Kralicky <joekralicky@gmail.com>
* adjust according to comments
---------
Co-authored-by: Joe Kralicky <joekralicky@gmail.com>
2024-08-29 15:16:32 -04:00
cmo-pomerium
ef08c32c82
Update README.md ( #5163 )
...
* Update README.md
I'm updating the ReadMe with a few links. The logo is also broken - are we hosting the logo anywhere else?
* fix urls
---------
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
2024-08-29 10:05:33 -06:00
Caleb Doxsey
131f553ee2
core/ci: fix test ( #5245 )
2024-08-27 10:50:24 -06:00
Caleb Doxsey
f3620cf6e9
core/config: add databroker_storage_connection_string_file ( #5242 )
...
* core/config: add databroker_storage_connection_string_file
* add file to file list
2024-08-27 09:42:14 -06:00
Caleb Doxsey
d062f9d68d
core/logs: remove warnings ( #5235 )
...
* core/logs: remove warnings
* switch to error
2024-08-27 09:38:50 -06:00
Caleb Doxsey
556b2e0d73
core/grpc: add mock for registry service ( #5243 )
2024-08-26 11:30:17 -06:00
dependabot[bot]
75324e2d05
chore(deps): bump micromatch from 4.0.5 to 4.0.8 in /ui ( #5240 )
...
Bumps [micromatch](https://github.com/micromatch/micromatch ) from 4.0.5 to 4.0.8.
- [Release notes](https://github.com/micromatch/micromatch/releases )
- [Changelog](https://github.com/micromatch/micromatch/blob/4.0.8/CHANGELOG.md )
- [Commits](https://github.com/micromatch/micromatch/compare/4.0.5...4.0.8 )
---
updated-dependencies:
- dependency-name: micromatch
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 07:56:02 -06:00
Caleb Doxsey
2dee1db5ff
core/ci: codeql ( #5239 )
2024-08-23 20:28:15 -06:00
Caleb Doxsey
98cea10421
Revert "core/grpc: add IterateAll method" ( #5234 )
...
Revert "core/grpc: add IterateAll method (#5227 )"
This reverts commit 3961098681
2024-08-23 10:35:46 -06:00
Denis Mishin
99d7a73cef
zero/bundle-download: update metadata ( #5212 )
...
* zero/download: refresh metadata
* fix cmp
2024-08-22 16:18:17 -04:00
Denis Mishin
0503b41108
zero/connect: add re-run health checks command ( #5219 )
...
* zero/connect: add run health checks and shutdown commands
* fix proto
* trigger re-run on command
* add handler
* rename runPeriodicHealthChecksLeased
2024-08-22 16:17:53 -04:00
Denis Mishin
6e766233c7
zero/health-checks: fix early checks sometimes missing ( #5229 )
...
* zero/health-checks: fix early checks sometimes missing
* rm closure
* fix test
2024-08-20 22:13:45 -04:00
Denis Mishin
6591e3f539
ci: allow to override VERSION in Makefile via env ( #5230 )
2024-08-20 16:22:25 -04:00
Joe Kralicky
56ba07e53e
Optimize policy iterators ( #5184 )
...
* Optimize policy iterators (go1.23)
This modifies (*Options).GetAllPolicies() to use a go 1.23 iterator
instead of copying all policies on every call, which can be extremely
expensive. All existing usages of this function were updated as
necessary.
Additionally, a new (*Options).NumPolicies() method was added which
quickly computes the number of policies that would be given by
GetAllPolicies(), since there were several usages where only the
number of policies was needed.
* Fix race condition when assigning default envoy opts to a policy
2024-08-20 12:35:10 -04:00
Caleb Doxsey
3961098681
core/grpc: add IterateAll method ( #5227 )
...
* core/grpc: add IterateAll method
* Update pkg/grpc/databroker/generic.go
Co-authored-by: Denis Mishin <dmishin@pomerium.com>
---------
Co-authored-by: Denis Mishin <dmishin@pomerium.com>
2024-08-20 09:34:26 -06:00
Caleb Doxsey
2925447d35
zero/api: switch to github.com/oapi-codegen/oapi-codegen ( #5226 )
2024-08-19 12:00:48 -06:00
Denis Mishin
15dc77e19d
connect/client: ignore unknown message types ( #5223 )
2024-08-16 16:33:06 -04:00
Joe Kralicky
45cf7a3969
Update golangci-lint version in lint workflow ( #5222 )
2024-08-15 17:49:39 -04:00
Joe Kralicky
332932b7a8
Replace usages of x/exp/maps + bump golang.org/x/exp ( #5221 )
...
Bump golang.org/x/exp; replace usages of x/exp/maps with stdlib equivalents
2024-08-15 17:49:24 -04:00
dependabot[bot]
c8d0c87c17
chore(deps): bump the docker group in /.github with 2 updates ( #5202 )
...
* chore(deps): bump the docker group in /.github with 2 updates
Bumps the docker group in /.github with 2 updates: distroless/base and distroless/base-debian12.
Updates `distroless/base` from `786007f` to `1aae189`
Updates `distroless/base-debian12` from `786007f` to `1aae189`
---
updated-dependencies:
- dependency-name: distroless/base
dependency-type: direct:production
dependency-group: docker
- dependency-name: distroless/base-debian12
dependency-type: direct:production
dependency-group: docker
...
Signed-off-by: dependabot[bot] <support@github.com>
* use docker compose instead of docker-compose
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
2024-08-15 12:16:21 -07:00
Caleb Doxsey
0cfb1025db
core/proto: update protoc dependencies ( #5218 )
...
* core/proto: update protoc dependencies
* cleanup
* disable unimplemented forward compatibility check
* fix mock
* add generate make command
* add .0
2024-08-15 11:12:05 -06:00
Denis Mishin
3483447c37
ci: do not include timestamp into buildmeta ( #5215 )
2024-08-15 10:57:10 -04:00
Joe Kralicky
1f2f20d792
Temporarily disable gci linter ( #5217 )
2024-08-14 16:30:08 -04:00
Joe Kralicky
8001077706
Update to Go 1.23 ( #5216 )
...
* Update to Go 1.23
* Update golangci-lint-action
* Fix new errors from updated linter
* Bump golangci-lint to v1.60.1
2024-08-14 14:12:01 -04:00
Joe Kralicky
e3e7de741c
envoy: support http2 prior knowledge for insecure upstream targets ( #5205 )
...
This allows using the scheme 'h2c' to indicate http2 prior knowledge for
insecure upstream servers. This can be used to perform TLS termination for
GRPC servers configured with insecure credentials.
As an example, this allows the following route configuration:
routes:
- from: https://grpc.localhost.pomerium.io
to: h2c://localhost:9090
2024-08-13 13:40:44 -04:00
Joe Kralicky
554e77bc7c
envoy: log mtls failures ( #5210 )
...
envoy: log mtls failures
This implements limited listener-based access logging for downstream
transport failures, only enabled when downstream_mtls.enforcement is
set to 'reject_connection'. Client certificate details and the error
message will be logged.
Additionally, the new key 'client-certificate' can be set in the
access_log_fields list in the configuration, which will add peer
certificate properties (issuer, subject, SANs) to the existing
per-request http logs.
---------
Co-authored-by: Kenneth Jenkins <51246568+kenjenkins@users.noreply.github.com>
2024-08-09 14:05:10 -04:00
Denis Mishin
c196921e87
Fix SECURITY.md treated as symlink ( #5211 )
2024-08-07 17:20:18 -04:00
Denis Mishin
09f1585b01
zero/cmd: make it more evident what caused shutdown ( #5209 )
2024-08-06 15:10:58 -04:00
Denis Mishin
e2251b2d57
databroker/leaser: set timeout on ReleaseLease ( #5208 )
2024-08-06 14:47:59 -04:00
