kubescape
diff --git a/‎admission/exporter/http_exporter.go
+1-2 b/‎admission/exporter/http_exporter.go
+1-2
diff --git a/‎admission/rulebinding/cache/cache.go
+8-12 b/‎admission/rulebinding/cache/cache.go
+8-12
diff --git a/‎admission/rulebinding/cache/cache_test.go
+1-2 b/‎admission/rulebinding/cache/cache_test.go
+1-2
diff --git a/‎admission/rulebinding/cache/helpers.go
+1-3 b/‎admission/rulebinding/cache/helpers.go
+1-3
diff --git a/‎admission/rulebinding/cache/helpers_test.go
-1 b/‎admission/rulebinding/cache/helpers_test.go
-1
diff --git a/‎admission/rules/v1/helpers.go
+7-7 b/‎admission/rules/v1/helpers.go
+7-7
diff --git a/‎admission/rules/v1/r2000_exec_to_pod.go
+1-3 b/‎admission/rules/v1/r2000_exec_to_pod.go
+1-3
diff --git a/‎admission/rules/v1/r2001_portforward.go
+3-5 b/‎admission/rules/v1/r2001_portforward.go
+3-5
diff --git a/‎admission/rules/v1/rule.go
+1-2 b/‎admission/rules/v1/rule.go
+1-2
diff --git a/‎admission/webhook/server.go
+2-3 b/‎admission/webhook/server.go
+2-3
diff --git a/‎admission/webhook/server_test.go
+2-2 b/‎admission/webhook/server_test.go
+2-2
diff --git a/‎continuousscanning/handlers.go
+5-7 b/‎continuousscanning/handlers.go
+5-7
diff --git a/‎continuousscanning/service.go
+3-4 b/‎continuousscanning/service.go
+3-4
diff --git a/‎continuousscanning/watchbuilder_test.go
+1-2 b/‎continuousscanning/watchbuilder_test.go
+1-2
diff --git a/‎docs/server.go
+1-2 b/‎docs/server.go
+1-2
diff --git a/‎main.go
+9-13 b/‎main.go
+9-13
@@ -9,11 +9,10 @@ import (
 	"sync"
 	"time"
 
+	apitypes "github.com/armosec/armoapi-go/armotypes"
 	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
 	"github.com/kubescape/operator/admission/rules"
-
-	apitypes "github.com/armosec/armoapi-go/armotypes"
 )
 
 type HTTPExporterConfig struct {
 
@@ -4,24 +4,20 @@ import (
 	"context"
 	"strings"
 
-	typesv1 "github.com/kubescape/node-agent/pkg/rulebindingmanager/types/v1"
-	"github.com/kubescape/node-agent/pkg/watcher"
-	"k8s.io/apimachinery/pkg/runtime"
-
-	"github.com/kubescape/node-agent/pkg/k8sclient"
-
-	"github.com/kubescape/node-agent/pkg/rulebindingmanager"
-
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
-	"k8s.io/apimachinery/pkg/labels"
-
 	"github.com/goradd/maps"
 	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
+	"github.com/kubescape/node-agent/pkg/k8sclient"
+	"github.com/kubescape/node-agent/pkg/rulebindingmanager"
+	typesv1 "github.com/kubescape/node-agent/pkg/rulebindingmanager/types/v1"
+	"github.com/kubescape/node-agent/pkg/watcher"
 	"github.com/kubescape/operator/admission/rulebinding"
 	"github.com/kubescape/operator/admission/rules"
 	rulesv1 "github.com/kubescape/operator/admission/rules/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/labels"
+	"k8s.io/apimachinery/pkg/runtime"
 )
 
 const (
 
@@ -4,10 +4,9 @@ import (
 	"context"
 	"testing"
 
-	typesv1 "github.com/kubescape/node-agent/pkg/rulebindingmanager/types/v1"
-
 	"github.com/goradd/maps"
 	"github.com/kubescape/k8s-interface/k8sinterface"
+	typesv1 "github.com/kubescape/node-agent/pkg/rulebindingmanager/types/v1"
 	"github.com/kubescape/operator/admission/rules"
 	"github.com/kubescape/operator/utils"
 	"github.com/stretchr/testify/assert"
 
@@ -4,12 +4,10 @@ import (
 	typesv1 "github.com/kubescape/node-agent/pkg/rulebindingmanager/types/v1"
 	"github.com/kubescape/node-agent/pkg/utils"
 	"github.com/kubescape/node-agent/pkg/watcher"
-
-	k8sruntime "k8s.io/apimachinery/pkg/runtime"
-
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	k8sruntime "k8s.io/apimachinery/pkg/runtime"
 )
 
 func uniqueName(obj metav1.Object) string {
 
@@ -4,7 +4,6 @@ import (
 	"testing"
 
 	typesv1 "github.com/kubescape/node-agent/pkg/rulebindingmanager/types/v1"
-
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
@@ -4,7 +4,7 @@ import (
 	"context"
 	"fmt"
 
-	v1 "k8s.io/api/core/v1"
+	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
 	"k8s.io/apimachinery/pkg/runtime"
@@ -22,7 +22,7 @@ func GetControllerDetails(event admission.Attributes, clientset kubernetes.Inter
 
 	pod, err := GetPodDetails(clientset, podName, namespace)
 	if err != nil {
-		return "", "", "", "", fmt.Errorf("failed to get pod details: %v", err)
+		return "", "", "", "", fmt.Errorf("failed to get pod details: %w", err)
 	}
 
 	workloadKind, workloadName, workloadNamespace := ExtractPodOwner(pod, clientset)
@@ -32,16 +32,16 @@ func GetControllerDetails(event admission.Attributes, clientset kubernetes.Inter
 }
 
 // GetPodDetails returns the pod details from the Kubernetes API server.
-func GetPodDetails(clientset kubernetes.Interface, podName, namespace string) (*v1.Pod, error) {
+func GetPodDetails(clientset kubernetes.Interface, podName, namespace string) (*corev1.Pod, error) {
 	pod, err := clientset.CoreV1().Pods(namespace).Get(context.TODO(), podName, metav1.GetOptions{})
 	if err != nil {
-		return nil, fmt.Errorf("failed to get pod: %v", err)
+		return nil, fmt.Errorf("failed to get pod: %w", err)
 	}
 	return pod, nil
 }
 
 // ExtractPodOwner returns the kind, name, and namespace of the controller that owns the pod.
-func ExtractPodOwner(pod *v1.Pod, clientset kubernetes.Interface) (string, string, string) {
+func ExtractPodOwner(pod *corev1.Pod, clientset kubernetes.Interface) (string, string, string) {
 	for _, ownerRef := range pod.OwnerReferences {
 		switch ownerRef.Kind {
 		case "ReplicaSet":
@@ -91,9 +91,9 @@ func GetContainerNameFromExecToPodEvent(event admission.Attributes) (string, err
 		return "", fmt.Errorf("object is not of type *unstructured.Unstructured")
 	}
 
-	podExecOptions := &v1.PodExecOptions{}
+	podExecOptions := &corev1.PodExecOptions{}
 	if err := runtime.DefaultUnstructuredConverter.FromUnstructured(unstructuredObj.Object, podExecOptions); err != nil {
-		return "", fmt.Errorf("failed to decode PodExecOptions: %v", err)
+		return "", fmt.Errorf("failed to decode PodExecOptions: %w", err)
 	}
 
 	return podExecOptions.Container, nil
 
@@ -4,16 +4,14 @@ import (
 	"fmt"
 	"time"
 
+	apitypes "github.com/armosec/armoapi-go/armotypes"
 	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
 	"github.com/kubescape/operator/admission/rules"
 	"github.com/kubescape/operator/objectcache"
-
 	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
 	"k8s.io/apiserver/pkg/admission"
 	"k8s.io/apiserver/pkg/authentication/user"
-
-	apitypes "github.com/armosec/armoapi-go/armotypes"
 )
 
 const (
 
@@ -4,16 +4,14 @@ import (
 	"fmt"
 	"time"
 
-	"github.com/kubescape/operator/admission/rules"
-	"github.com/kubescape/operator/objectcache"
-
+	apitypes "github.com/armosec/armoapi-go/armotypes"
 	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
+	"github.com/kubescape/operator/admission/rules"
+	"github.com/kubescape/operator/objectcache"
 	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
 	"k8s.io/apiserver/pkg/admission"
 	"k8s.io/apiserver/pkg/authentication/user"
-
-	apitypes "github.com/armosec/armoapi-go/armotypes"
 )
 
 const (
 
@@ -1,9 +1,8 @@
 package rules
 
 import (
-	"github.com/kubescape/operator/admission/rules"
-
 	"github.com/goradd/maps"
+	"github.com/kubescape/operator/admission/rules"
 )
 
 const (
 
@@ -12,10 +12,9 @@ import (
 	"sync"
 	"time"
 
-	"github.com/kubescape/node-agent/pkg/watcher"
-
 	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
+	"github.com/kubescape/node-agent/pkg/watcher"
 	admissionv1 "k8s.io/api/admission/v1"
 	authenticationv1 "k8s.io/api/authentication/v1"
 	k8serrors "k8s.io/apimachinery/pkg/api/errors"
@@ -393,7 +392,7 @@ func parseRequest(r *http.Request) (*admissionv1.AdmissionReview, error) {
 	var admissionReview admissionv1.AdmissionReview
 
 	if err := json.Unmarshal(body, &admissionReview); err != nil {
-		return nil, fmt.Errorf("could not parse admission review request: %v", err)
+		return nil, fmt.Errorf("could not parse admission review request: %w", err)
 	}
 
 	if admissionReview.Request == nil {
 
@@ -14,7 +14,7 @@ import (
 	"github.com/kubescape/node-agent/pkg/watcher"
 	"github.com/stretchr/testify/assert"
 	admissionv1 "k8s.io/api/admission/v1"
-	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/apimachinery/pkg/runtime/serializer"
 	"k8s.io/apiserver/pkg/admission"
@@ -59,7 +59,7 @@ func TestHandleWebhookValidate(t *testing.T) {
 	review := admissionv1.AdmissionReview{
 		Request: &admissionv1.AdmissionRequest{
 			UID:  "12345",
-			Kind: v1.GroupVersionKind{Group: "apps", Version: "v1", Kind: "Deployment"},
+			Kind: metav1.GroupVersionKind{Group: "apps", Version: "v1", Kind: "Deployment"},
 			Object: runtime.RawExtension{
 				Raw: []byte(`{"apiVersion":"apps/v1","kind":"Deployment","metadata":{"name":"test"}}`),
 			},
 
@@ -5,13 +5,9 @@ import (
 	"errors"
 	"fmt"
 
-	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
-	"k8s.io/apimachinery/pkg/runtime"
-	"k8s.io/apimachinery/pkg/watch"
-	"k8s.io/utils/ptr"
-
 	armoapi "github.com/armosec/armoapi-go/apis"
 	armowlid "github.com/armosec/utils-k8s-go/wlid"
+	sets "github.com/deckarep/golang-set/v2"
 	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
 	"github.com/kubescape/k8s-interface/k8sinterface"
@@ -24,8 +20,10 @@ import (
 	kssc "github.com/kubescape/storage/pkg/generated/clientset/versioned"
 	"github.com/panjf2000/ants/v2"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-	sets "github.com/deckarep/golang-set/v2"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/runtime"
+	"k8s.io/apimachinery/pkg/watch"
+	"k8s.io/utils/ptr"
 )
 
 var orphanableWorkloadTypes = sets.NewSet[string]("Pod", "ReplicaSet", "Job")
 
@@ -3,15 +3,14 @@ package continuousscanning
 import (
 	"context"
 
+	armoapi "github.com/armosec/armoapi-go/apis"
+	"github.com/kubescape/go-logger"
+	"github.com/kubescape/go-logger/helpers"
 	"github.com/kubescape/operator/config"
 	"github.com/kubescape/operator/watcher"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/watch"
 	"k8s.io/client-go/dynamic"
-
-	armoapi "github.com/armosec/armoapi-go/apis"
-	"github.com/kubescape/go-logger"
-	"github.com/kubescape/go-logger/helpers"
 )
 
 type ContinuousScanningService struct {
 
@@ -4,13 +4,12 @@ import (
 	"context"
 	"testing"
 
+	"github.com/stretchr/testify/assert"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/apimachinery/pkg/runtime/schema"
 	dynamicfake "k8s.io/client-go/dynamic/fake"
 	ktest "k8s.io/client-go/testing"
-
-	"github.com/stretchr/testify/assert"
 )
 
 func assertWatchAction(t *testing.T, gotAction ktest.Action, wantGVR schema.GroupVersionResource) {
 
@@ -1,9 +1,8 @@
 package docs
 
 import (
-	"net/http"
-
 	_ "embed"
+	"net/http"
 
 	"github.com/go-openapi/runtime/middleware"
 )
 
@@ -5,36 +5,32 @@ import (
 	"flag"
 	"fmt"
 	"net/http"
+	_ "net/http/pprof"
 	"net/url"
 	"os"
 	"os/signal"
 	"syscall"
 	"time"
 
-	"github.com/kubescape/node-agent/pkg/rulebindingmanager"
-	"github.com/kubescape/node-agent/pkg/watcher/dynamicwatcher"
-	kssc "github.com/kubescape/storage/pkg/generated/clientset/versioned"
-
-	_ "net/http/pprof"
-
+	"github.com/armosec/utils-k8s-go/probes"
+	beUtils "github.com/kubescape/backend/pkg/utils"
+	"github.com/kubescape/go-logger"
 	"github.com/kubescape/go-logger/helpers"
 	"github.com/kubescape/k8s-interface/k8sinterface"
+	"github.com/kubescape/node-agent/pkg/rulebindingmanager"
+	"github.com/kubescape/node-agent/pkg/watcher/dynamicwatcher"
 	exporters "github.com/kubescape/operator/admission/exporter"
 	rulebindingcachev1 "github.com/kubescape/operator/admission/rulebinding/cache"
 	"github.com/kubescape/operator/admission/webhook"
 	"github.com/kubescape/operator/config"
 	"github.com/kubescape/operator/mainhandler"
 	"github.com/kubescape/operator/objectcache"
 	"github.com/kubescape/operator/restapihandler"
+	"github.com/kubescape/operator/servicehandler"
 	"github.com/kubescape/operator/utils"
+	kssc "github.com/kubescape/storage/pkg/generated/clientset/versioned"
 	"k8s.io/apimachinery/pkg/runtime"
 	restclient "k8s.io/client-go/rest"
-
-	"github.com/armosec/utils-k8s-go/probes"
-	beUtils "github.com/kubescape/backend/pkg/utils"
-	"github.com/kubescape/go-logger"
-
-	"github.com/kubescape/operator/servicehandler"
 )
 
 //go:generate swagger generate spec -o ./docs/swagger.yaml
@@ -109,7 +105,7 @@ func main() {
 	k8sConfig.ContentType = "application/vnd.kubernetes.protobuf"
 	ksStorageClient, err := kssc.NewForConfig(k8sConfig)
 	if err != nil {
-		logger.L().Ctx(ctx).Fatal(fmt.Sprintf("Unable to initialize the storage client: %v", err))
+		logger.L().Ctx(ctx).Fatal("unable to initialize the storage client", helpers.Error(err))
 	}
 
 	kubernetesCache := objectcache.NewKubernetesCache(k8sApi)
Original file line number	Diff line number	Diff line change
`@@ -1,9 +1,8 @@`
`1`	`1`	`package rules`
`2`	`2`
`3`	`3`	`import (`
`4`		`- "github.com/kubescape/operator/admission/rules"`
`5`		`-`
`6`	`4`	`"github.com/goradd/maps"`
	`5`	`+ "github.com/kubescape/operator/admission/rules"`
`7`	`6`	`)`
`8`	`7`
`9`	`8`	`const (`
Original file line number	Diff line number	Diff line change
`@@ -1,9 +1,8 @@`
`1`	`1`	`package docs`
`2`	`2`
`3`	`3`	`import (`
`4`		`- "net/http"`
`5`		`-`
`6`	`4`	`_ "embed"`
	`5`	`+ "net/http"`
`7`	`6`
`8`	`7`	`"github.com/go-openapi/runtime/middleware"`
`9`	`8`	`)`