Merge pull request #58 from kubewarden/fix-ephemeral

fix: Use correct rules for `ephemeralcontainers`
kubewarden · Jul 18, 2024 · 5506c6c · 5506c6c
2 parents 7907bc3 + 7c5c752
commit 5506c6c
Show file tree

Hide file tree

Showing 4 changed files with 12 additions and 13 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "allowed-proc-mount-types-psp"
-version = "0.1.9"
+version = "0.1.10"
 authors = ["Rafael Fernández López <[email protected]>"]
 edition = "2018"
 

diff --git a/artifacthub-pkg.yml b/artifacthub-pkg.yml
@@ -4,33 +4,33 @@
 #
 # This config can be saved to its default location with:
 #   kwctl scaffold artifacthub > artifacthub-pkg.yml 
-version: 0.1.9
+version: 0.1.10
 name: allowed-proc-mount-types-psp
 displayName: Allowed Proc Mount Types PSP
-createdAt: 2023-10-16T08:29:41.923293545Z
+createdAt: 2024-07-17T14:23:02.94346891Z
 description: Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types
 license: Apache-2.0
 homeURL: https://github.com/kubewarden/allowed-proc-mount-types-psp-policy
 containersImages:
 - name: policy
-  image: ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp:v0.1.9
+  image: ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp:v0.1.10
 keywords:
 - psp
 - container
 - runtime
 links:
 - name: policy
-  url: https://github.com/kubewarden/allowed-proc-mount-types-psp-policy/releases/download/v0.1.9/policy.wasm
+  url: https://github.com/kubewarden/allowed-proc-mount-types-psp-policy/releases/download/v0.1.10/policy.wasm
 - name: source
   url: https://github.com/kubewarden/allowed-proc-mount-types-psp-policy
 install: |
   The policy can be obtained using [`kwctl`](https://github.com/kubewarden/kwctl):
   ```console
-  kwctl pull ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp:v0.1.9
+  kwctl pull ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp:v0.1.10
   ```
   Then, generate the policy manifest and tune it to your liking. For example:
   ```console
-  kwctl scaffold manifest -t ClusterAdmissionPolicy registry://ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp:v0.1.9
+  kwctl scaffold manifest -t ClusterAdmissionPolicy registry://ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp:v0.1.10
   ```
 maintainers:
 - name: Kubewarden developers
@@ -76,6 +76,5 @@ annotations:
       - v1
       resources:
       - pods
-      - pods/ephemeralcontainers
       operations:
       - UPDATE
diff --git a/metadata.yml b/metadata.yml
@@ -1,6 +1,6 @@
 rules:
   - apiGroups:
-      - ''
+      - ""
     apiVersions:
       - v1
     resources:
@@ -9,12 +9,11 @@ rules:
     operations:
       - CREATE
   - apiGroups:
-      - ''
+      - ""
     apiVersions:
       - v1
     resources:
       - pods
-      - pods/ephemeralcontainers
     operations:
       - UPDATE
 mutating: false
@@ -28,7 +27,8 @@ annotations:
   # kubewarden specific
   io.kubewarden.policy.ociUrl: ghcr.io/kubewarden/policies/allowed-proc-mount-types-psp
   io.kubewarden.policy.title: allowed-proc-mount-types-psp
-  io.kubewarden.policy.description: Replacement for the Kubernetes Pod Security Policy
+  io.kubewarden.policy.description:
+    Replacement for the Kubernetes Pod Security Policy
     that controls the usage of /proc mount types
   io.kubewarden.policy.author: Kubewarden developers <[email protected]>
   io.kubewarden.policy.url: https://github.com/kubewarden/allowed-proc-mount-types-psp-policy