public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
56,415 Commits 655 Branches 650 Tags
2e2e89a81663dfdab284e945bc508c33a6eadddb
Commit Graph

115 Commits

Author SHA1 Message Date
Matheus Macabu
2e2e89a816 [release-11.5.6] Dependencies: Bump github.com/openfga/openfga to v1.8.13 to address CVE-2025-48371 (#106118) 
* Dependencies: Bump github.com/openfga/openfga to v1.8.13 to address CVE-2025-48371

* Static: Fix failing unit test import
 2025-06-09 13:06:46 +02:00
Matheus Macabu
c0e2889cea [release-11.5.5] Dependencies: Bump packages in modules with incorrect dependencies or outside of workspace (#105461) 
Dependencies: Bump golang.org/x to latest
 2025-05-15 14:52:51 +02:00
Matheus Macabu
f4ad2eb9ec [release-11.5.5] Dependencies: Bump github.com/blevesearch/bleve/v2 from v2.4.3 to v2.5.0 (#105441) 
Dependencies: Bump github.com/blevesearch/bleve/v2 from v2.4.3 to v2.5.0
 2025-05-15 12:05:26 +02:00
Matheus Macabu
2aa89a90a2 [release-11.5.5] Dependencies: Bump github.com/openfga/openfga from v1.8.5 to v1.8.12 (#105373) 
Dependencies: Bump github.com/openfga/openfga from v1.8.5 to v1.8.12
 2025-05-14 14:17:25 +02:00
Matheus Macabu
2e24578a72 [release-11.5.5] Chore: Bump Go version to 1.24.3 (#105109) 
Chore: Bump Go version to 1.24.3
 2025-05-08 16:08:08 +02:00
Mariell Hoversholm
bf3f23b558 [release-11.5.4] Go: Bump to 1.24.2 (#103525) 
Go: Bump to 1.24.2

It is not likely we are actually affected by the CVEs, but updating proactively is not a bad idea nonetheless.

Fixes: CVE-2025-22871
Fixes: https://github.com/grafana/grafana-operator-experience-squad/issues/1311
 2025-04-08 17:24:33 +02:00
Matheus Macabu
cd63f38f47 [release-11.5.3] Chore: Bump dependencies to address security issues (#101627) 
* Chore: Bump github.com/go-jose/go-jose/v3 to v3.0.4

* Chore: Bump github.com/ua-parser/uap-go to v0.0.0-20250213224047-9c035f085b90

* Chore: Bump golang.org/x/net to v0.36.0

* Chore: Use github.com/moby/moby version 27.4.1 instead of 26.0.0

* Chore: Bump github.com/openfga/openfga to v1.8.5
 2025-03-06 10:12:17 +01:00
Matheus Macabu
29d35ec39c [release-11.5.3] Chore: Bump Go to 1.23.7 (#101581) 
Chore: Bump Go to 1.23.7
 2025-03-05 09:59:05 +01:00
Matheus Macabu
9db9662213 [release-11.5.3] Chore: Update golang.org/x/crypto and golang.org/x/oauth2 to address security issues (#101278) 
Chore: Update golang.org/x/crypto and golang.org/x/ouath2 to address security issues (#101268)

- CVE-2025-22869 and Go issue https://go.dev/issue/71931.
- CVE-2025-22868 and Go issue https://go.dev/issue/71490.

(cherry picked from commit 3aedb9159e)
 2025-02-26 08:42:00 +01:00
Gabriel MABILLE
4c86de2678 Chore: Update authlib (#98870) 
* Chore: Update authlib

* AccessChecker -> AccessClient
 2025-01-14 09:42:17 +01:00
dependabot[bot]
1c67f4084c Bump google.golang.org/api from 0.213.0 to 0.216.0 (#98905) 
* Bump google.golang.org/api from 0.213.0 to 0.216.0

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.213.0 to 0.216.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.213.0...v0.216.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* update workspace

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-01-13 16:05:48 -05:00
ismail simsek
f74396b51d Prometheus: Update prometheus to v0.301.0 for utf8 support (#98848) 
* update github.com/prometheus/prometheus to v0.301.0

* have an adapter for infra logger

* go mod tidy and go work sync

* remvoe the cuelang.org/go replace

* remove slog_adapter
 2025-01-13 17:14:20 +01:00
Selene
0501ff9079 Codegen: Isolate schema generation code (#98742) 
* Create go.mod files for plugins and core kinds

* Update go work and main go.mod dependencies

* Update pfs import

* Missing update of pfs dependency

* Remove fixed cuelang dependency

* Update codeowners

* Update workspace

* Update Dockerfile

* Missing go.mod codeowner

* Use intermediate kin-openapi dependency to make all workspaces to work
 2025-01-10 13:33:51 +01:00
Karl Persson
c593b20465 Zanana: Add custom verb for get_permissions and set_permissions. (#98616) 
* Add custom verb for get_permissions and update_permissions.

Co-authored-by: Alexander Zobnin <alexanderzobnin@gmail.com>
 2025-01-10 11:49:26 +01:00
Will Browne
5a2315dabf Plugins: Capture error source from grpc status errors (#97471) 
* capture errorsource from grpc error

* apply PR feedback

* update comment

* update comment

* use SDK logic

* update SDK commit

* update sdk

* update golden files
 2025-01-08 17:05:28 +00:00
Karl Persson
9ed4bf3cd2 Zanzana: Support sub resources (#98201) 
* Create and use common ResourceInfo struct

* Add support for formatting group resource with subresource

* Add initial support for handling subresource

* Add test for checking subresource for generic resource

* Bump authlib
 2025-01-07 15:16:14 +01:00
dependabot[bot]
addc1c95a5 Bump golang.org/x/crypto from 0.31.0 to 0.32.0 (#98550) 
* Bump golang.org/x/crypto from 0.31.0 to 0.32.0

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.31.0 to 0.32.0.
- [Commits](https://github.com/golang/crypto/compare/v0.31.0...v0.32.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* update workspace

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2025-01-07 08:00:45 +03:00
Ryan McKinley
6683cdc082 K8s: Update from v0.31.3 to v0.32.0 (#98507) 2025-01-06 18:20:35 +03:00
dependabot[bot]
fed73bfa59 Chore(deps): Bump sigs.k8s.io/structured-merge-diff/v4 from 4.4.1 to 4.5.0 (#98091) 2025-01-03 17:44:33 -05:00
Robert Goltz
5a2344ed0c Chore: Bump dependency golang.org/x/net to v0.33.0 - fix: CVE-2024-45338 (#98340) 
* Chore: golang.org/x/net update to fix CVE-2024-45338

* Chore: golang.org/x/net update to fix CVE-2024-45338 - resolve trivy-finding + 2nd run make update-workspace
 2025-01-02 11:22:25 -07:00
Stephanie Hingtgen
03f7a7d89d K8s: Dashboards: Add search to dashboard service (#98395) 2025-01-02 09:39:45 -06:00
Ryan McKinley
1a46039037 K8s/Dashboards: Pass the legacy internal ID into labels (#98311) 
---------

Co-authored-by: Stephanie Hingtgen <stephanie.hingtgen@grafana.com>
Co-authored-by: Todd Treece <360020+toddtreece@users.noreply.github.com>
 2024-12-20 21:33:49 +02:00
Gabriel MABILLE
efb7cc0343 Chore: Authlib upgrade (#98319) 
* Chore: Authlib upgrade

* Upgrade authlib

* Uncommit file
 2024-12-20 15:48:35 +01:00
Karl Persson
73dda344f9 Bump authlib (#98234) 
* Bump authlib
 2024-12-19 13:07:32 +01:00
Gabriel MABILLE
987357327d Chore: Update authlib (#98191) 2024-12-18 17:16:34 +01:00
Ryan McKinley
6d21eddf13 Plugins: Update to latest go plugin SDK (v0.260.3) w/ arrow v18 (#97561) 
Co-authored-by: Todd Treece <360020+toddtreece@users.noreply.github.com>
 2024-12-13 17:06:39 +03:00
Robert Goltz
0a390cc069 Chore: Bump dependency golang.org/x/crypto to v0.31.0 - fix: CVE-2024-45337 (#97823) 
* Update dependency golang.org/x/crypto to v0.31.0

* Update dependency golang.org/x/crypto to v0.31.0 - based on Trivy Scan

* Chore: go mod tidy

* Chore: make update-workspace

* Chore: manually update more sum files

---------

Co-authored-by: Mariell Hoversholm <mariell.hoversholm@grafana.com>
 2024-12-12 14:21:46 +01:00
Gabriel MABILLE
65dfbd7731 go.mod: Update authlib (#97833) 
* go.mod: Update authlib

* No clue why it was removed by my computer but not by CI
 2024-12-12 13:56:01 +01:00
Ivana Huckova
802b96c6f7 Bump github.com/grafana/grafana-plugin-sdk-go to v0.260.1 (#97329) 
* Bump github.com/grafana/grafana-plugin-sdk-go to v0.260.1

* run make update-workspace

* make update-workspace

---------

Co-authored-by: Andres Martinez Gotor <andres.martinez@grafana.com>
 2024-12-03 16:19:43 +01:00
Karl Persson
3a17d0c927 IAM: align AuthInfo interface (#97228) 
* Update to use updated interface
 2024-12-03 15:11:17 +01:00
Ryan McKinley
219411f894 K8s: Upgrade v0.31.1 -> v0.31.3 (#96964) 2024-12-02 12:49:24 +02:00
Kévin Gomez
c8d3ea58f8 Support importing local cue modules when generating TS types with cog (#96876) 
* Support importing local cue modules when generating TS types with cog

* Generate enums as unions of values instead of an actual `enum` statement

* Update transformers to use the new TS enums

* Update go workspaces

---------

Co-authored-by: Ivan Ortega <ivanortegaalba@gmail.com>
 2024-11-28 10:45:31 +01:00
Karl Persson
76f052e8de Requester: Remove duplicated function (#97038) 
* Remove duplicated function

* Remove GetDisplayName from interface

* Use GetName
 2024-11-26 15:29:31 +01:00
Karl Persson
3990637af9 IAM: remove duplicated functions (#96989) 
* Remove duplicated function and use the one provided by claims package
 2024-11-26 09:22:45 +01:00
Andreas Christou
4ea15f2f2c Bump Plugin SDK version (#96933) 
* Bump Plugin SDK version

* Rerun update-workspace
 2024-11-22 20:43:13 +02:00
Todd Treece
66d5c051aa Dashboards: Add v1alpha1 and v2alpha1 conversion (#96415) 
---------

Co-authored-by: Stephanie Hingtgen <stephanie.hingtgen@grafana.com>
 2024-11-15 15:49:45 -05:00
Ryan McKinley
cc6d057a18 Provisioning: Rename k8s origin metadata to repo (#96524) 2024-11-15 17:26:14 +03:00
Karl Persson
8d74296b6c Authn: Always set namespace (#96230) 
* Rename from AllowedKubernetesNamespace to Namespace

* Use a sync hook to always set namespace for Identity.

* format

* Don't set uid when authenticating as user
 2024-11-12 10:12:47 +01:00
Ryan McKinley
c0de407fee K8s/Dashboards: Delegate large objects to blob store (#94943) 2024-11-09 08:09:46 +03:00
Karl Persson
3bcbf231ee IDToken: fix namespace format (#95341) 
* Bump authlib version

* Remove temporary formatter and start signing tokens with `stacks-` prefix

* update workspace
 2024-11-04 09:33:03 +01:00
Yuri Tseretyan
672d5f92f2 Chore: Fix population of details when converting from errutil errors to K8s error (#94996) 2024-10-18 13:15:13 -04:00
Karl Persson
a82d01214d Auth: Update authlib (#94947) 
* Update authlib
 2024-10-18 13:36:21 +02:00
Marcus Efraimsson
42016dc359 Chore: Update SDK to v0.255.0 (#94894) 2024-10-18 10:42:32 +02:00
Ryan McKinley
8b9bb2acf6 K8s/Folders: Warn against using full path in metadata (#94829) 2024-10-17 14:32:39 +03:00
Alexander Zobnin
9f1b584c85 Chore: Update authlib version (#94714) 
* Chore: Update authlib version

* update workspace

* use ParseNamespace()
 2024-10-15 16:58:46 +02:00
Arati R.
011978e81b K8s/Folders: Remove folder service from client (#94450) 
* Support getting full path of UIDs
* Use full path to set parents field
* Update get folder test
* Add folder store test for getting with full path UIDs
* Add test for parsing parent titles
* Test nested folder create payload
 2024-10-10 13:22:57 +02:00
Karl Persson
9ece88d585 Zanzana: bump openfga version (#94485) 
* Bump openfga

* Remove internall sqlite implementation for openfga

* Use sqlite implementation from openfga
 2024-10-10 09:07:40 +02:00
Todd Treece
a4d919c157 Chore: Update k8s.io dependencies to v0.31.1 (#93696) 2024-10-03 15:50:15 -04:00
Santiago
aa77023008 Alerting: Fix panics when attempting to create an Alertmanager after failing (#94023) 2024-09-30 13:50:35 -03:00
Karl Persson
0160f4f72c RBAC: Add legacy authorization checks to service accounts (#93753) 
* Extract a helper funtion to perform list with authorization checks

* Add k8s verb to utils package

* Construct default mapping when no custom mapping is passed

* Configure authorization checks for service accounts

* Fix helper and add filtering to service accounts
 2024-09-27 15:53:11 +02:00