Skip to content
This repository has been archived by the owner on Jun 20, 2024. It is now read-only.

Reweave - an effort to create a modern build system for weave net #3996

Open
wants to merge 70 commits into
base: master
Choose a base branch
from
Open
Changes from 1 commit
Commits
Show all changes
70 commits
Select commit Hold shift + click to select a range
7140e40
Reweave begins
rajch Mar 25, 2023
ee3b7ce
Old build process documented
rajch Mar 25, 2023
273c611
Image security scanning process created
rajch Mar 27, 2023
90a5d94
New build process created
rajch Mar 27, 2023
c241c45
Go version bumped to 1.20
rajch Mar 28, 2023
df2240a
Some vulnerable dependencies upgraded
rajch Mar 28, 2023
2f49b84
github.com/miekg/dns upgraded with code change
rajch Mar 29, 2023
1bb1f02
libCNI upgraded to v1.1.2
rajch Mar 29, 2023
88d8bb6
Docker, containerd and runc dependencies upgraded
rajch Mar 29, 2023
e84a000
multiarch (alpine)
Mar 29, 2023
901e889
Merge pull request #1 from kingdonb/reweave
rajch Mar 30, 2023
559027b
Alpine base image upgraded
rajch Mar 30, 2023
cdf761b
Scan results on 2023-07-17
rajch Jul 17, 2023
4b47fc6
Alpine base image upgraded
rajch Jul 17, 2023
668bbcf
Docker and runc dependencies upgraded
rajch Jul 17, 2023
c085ebe
Build steps for docker plugin added
rajch Jul 28, 2023
6365328
Documentation updated
rajch Jul 31, 2023
65cbea0
Scan results on 2023-08-15
rajch Aug 15, 2023
126f3ab
Alpine base image upgraded
rajch Aug 15, 2023
1ceeca8
Scan results on 2023-11-12
rajch Nov 12, 2023
0d58e17
Alpine base image and some dependencies upgraded
rajch Nov 12, 2023
6093383
Start creation of full fork
rajch Feb 29, 2024
00f8afd
Changed registry user in publishables to rajchaudhuri on docker hub
rajch Feb 29, 2024
ea27069
Scan results on 2024-02-29
rajch Feb 29, 2024
962bb57
Dependencies and alpine base image upgraded
rajch Mar 1, 2024
c1d3107
Changed module name, edited default manifests in prog/weave-kube
rajch Mar 1, 2024
0e7b15b
Changed documentation and scan process
rajch Mar 3, 2024
a9d6634
Go version bumped to 1.21
rajch Mar 3, 2024
7b08716
Add release v2.8.2
rajch Mar 3, 2024
55a4699
Release 2.8.2 cosmetic corrections
rajch Mar 3, 2024
e500408
Docker API client version bumped to 1.24 everywhere
rajch Mar 7, 2024
a752f65
All images other than V2 docker plugin added to scan process
rajch Mar 7, 2024
d087879
Add release v2.8.3
rajch Mar 7, 2024
664e361
In alpine base image, changed default iptables backend to legacy for …
rajch Mar 10, 2024
bcab10a
When publishing images, the :latest tag will not be applied if the cu…
rajch Mar 17, 2024
b46c774
Updated CNI conflist file content, and ensured correct version stamping
rajch Mar 18, 2024
92779f3
Moved old artifacts that are no longer used to 'original' directory
rajch Mar 18, 2024
e2db8a2
Added documentation website content, and a workflow to publish it to …
rajch Mar 18, 2024
a0ee825
Updated internal CHANGELOG
rajch Mar 19, 2024
c1993b9
Scan results on 2024-03-19
rajch Mar 19, 2024
8c14812
Upgraded dependency, modified scan process
rajch Mar 19, 2024
c3afe55
Add release v2.8.4
rajch Mar 20, 2024
ff91a56
Scan results on 2024-03-30
rajch Mar 30, 2024
ac180cf
Upgraded dependency
rajch Apr 5, 2024
c3cc210
Add release 2.8.5
rajch Apr 6, 2024
78f596f
Provisioned for Docker V2 plugin on multiple architectures, blocked C…
rajch Apr 9, 2024
e42bc29
Add release v2.8.6
rajch Apr 10, 2024
afd62f2
Corrected plugin publish tool
rajch Apr 10, 2024
46cf7c4
Documentation corrections
rajch Apr 10, 2024
f8d0d8e
Scan results on 2024-05-04
rajch May 4, 2024
3fd1ae5
Upgraded a dependency
rajch May 4, 2024
a3d5e07
Removed ppc64le and s390x arch support
rajch May 5, 2024
525d517
Add release v2.8.7
rajch May 5, 2024
8cfc740
Scan results on 2024-06-18
rajch Jun 18, 2024
8111775
Alpine base image upgraded
rajch Jun 18, 2024
b0477a2
Add release v2.8.8
rajch Jun 19, 2024
32ad2a1
Documentation updates
rajch Jul 19, 2024
8f85c32
Scan results on 2024-07-30
rajch Jul 30, 2024
ae5d462
Scan results on 2024-08-09
rajch Aug 9, 2024
981196a
Updated a dependency, Go version and Alpine base image
rajch Aug 9, 2024
463c7af
Add release v2.8.9
rajch Aug 9, 2024
f32a2a6
Scan results on 2024-10-16
rajch Oct 16, 2024
ca2ba76
Alpine base image upgraded to 3.20.3
rajch Oct 17, 2024
fab7297
Scan results on 2024-10-17
rajch Oct 17, 2024
6512da7
Go version upgraded to 1.23.1
rajch Oct 17, 2024
84afe28
Add release v2.8.10
rajch Oct 17, 2024
2c67714
Scan results on 2024-12-22
rajch Dec 22, 2024
9057156
Upgraded two dependencies based on scan results
rajch Dec 22, 2024
999aeb7
Made changes to assume iptables-nft as the default backend for iptabl…
rajch Dec 22, 2024
8397222
Add release v2.9.0
rajch Dec 22, 2024
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Release 2.8.2 cosmetic corrections
Minor mistakes in README.md and the scan report corrected.
rajch committed Mar 3, 2024
commit 55a46992d434b04f1b45e41271e46fafbfa155d3
2 changes: 1 addition & 1 deletion README.md
Original file line number Diff line number Diff line change
@@ -4,7 +4,7 @@ This repository contains a fork of Weave Net, the first product developed by Wea

[![Go Report Card](https://goreportcard.com/badge/github.com/rajch/weave)](https://goreportcard.com/report/github.com/rajch/weave)
[![Docker Pulls](https://img.shields.io/docker/pulls/rajchaudhuri/weave-kube)](https://hub.docker.com/r/rajchaudhuri/weave-kube)
![GitHub release (latest by date)](https://img.shields.io/github/v/release/rajch/ttws?include_prereleases)
![GitHub release (latest by date)](https://img.shields.io/github/v/release/rajch/weave?include_prereleases)
[![Unique vulnerability count in all images](https://img.shields.io/endpoint?url=https%3A%2F%2Fraw.githubusercontent.com%2Frajch%2Fweave%2Fmaster%2Freweave%2Fscans%2Fbadge.json&label=Vulnerabilty%20count)](reweave/scans/report.md)

The history of the ReWeave effort can be found in [HISTORY.md](HISTORY.md).
8 changes: 8 additions & 0 deletions reweave/scans/report.md
Original file line number Diff line number Diff line change
@@ -1,11 +1,14 @@
# Vulnerability Report

```
Report date: 2024-03-03
Unique vulnerability count: 14
Images version: 2.8.2
```

## Scanner Details

```
Application: grype
Version: 0.74.7
BuildDate: 2024-02-26T18:24:14Z
@@ -16,11 +19,13 @@ GoVersion: go1.21.7
Compiler: gc
Syft Version: v0.105.1
Supported DB Schema: 5
```

## Vulnerabilities

weave-kube: (14)

```
NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY
busybox 1.36.1-r15 apk CVE-2023-42366 Medium
busybox 1.36.1-r15 apk CVE-2023-42365 Medium
@@ -36,9 +41,11 @@ ssl_client 1.36.1-r15 apk CVE-2023-42366 Medium
ssl_client 1.36.1-r15 apk CVE-2023-42365 Medium
ssl_client 1.36.1-r15 apk CVE-2023-42364 Medium
ssl_client 1.36.1-r15 apk CVE-2023-42363 Medium
```

weave-npc: (12)

```
NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY
busybox 1.36.1-r15 apk CVE-2023-42366 Medium
busybox 1.36.1-r15 apk CVE-2023-42365 Medium
@@ -52,3 +59,4 @@ ssl_client 1.36.1-r15 apk CVE-2023-42366 Medium
ssl_client 1.36.1-r15 apk CVE-2023-42365 Medium
ssl_client 1.36.1-r15 apk CVE-2023-42364 Medium
ssl_client 1.36.1-r15 apk CVE-2023-42363 Medium
```
9 changes: 8 additions & 1 deletion reweave/tools/scan-images.sh
Original file line number Diff line number Diff line change
@@ -39,16 +39,23 @@ fi
# Produce report
printf "# Vulnerability Report\n\n" > "${SCANDIR}/report.md"
{
printf "\`\`\`\n"
printf "Report date: %s\n" "$(date +'%Y-%m-%d')"
printf "Unique vulnerability count: %s\n" "${UNIQUECOUNT}"
#tail -n +2 -q "${SCANDIR}/weave-npc-list-vulns.txt" "${SCANDIR}/weave-kube-list-vulns.txt" | sort -u | wc -l
printf "Images version: %s\n" "${IMAGE_VERSION}"
printf "\`\`\`\n"
printf "\n## Scanner Details\n\n"
printf "\`\`\`\n"
grype version
printf "\`\`\`\n"
printf "\n## Vulnerabilities\n\nweave-kube: (%s) \n\n" "$(tail +2 "${SCANDIR}/weave-kube-list-vulns.txt" | wc -l)"
printf "\`\`\`\n"
cat "${SCANDIR}/weave-kube-list-vulns.txt"
printf "\`\`\`\n"
printf "\nweave-npc: (%s)\n\n" "$(tail +2 "${SCANDIR}/weave-npc-list-vulns.txt" | wc -l)"
printf "\`\`\`\n"
cat "${SCANDIR}/weave-npc-list-vulns.txt"
printf "\`\`\`\n"
} >> "${SCANDIR}/report.md"

# Produce Vulnerability Count badge json for README