Add Chains management command #1440
Conversation
tekton-robot
added
release-note
|
Hi @rgreinho. Thanks for your PR. I'm waiting for a tektoncd member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
tekton-robot
added
needs-ok-to-test
rgreinho
force-pushed
the
chains-cli
branch
2 times, most recently
from
d308c2d to
6cb6703
Compare
|
@vdemeester @chmouel @pradeepitm12 Is not better to have a TEP for this new cmd? |
It would be nice discussing them there indeed 👼🏼 |
|
Copy that! I am reading through the documentation to understand the process and I'll start writing a TEP about adding the new |
|
Nice proposal -- this would be fantastic to have! |
|
Here is my TEP related to this change: tektoncd/community#508. Looking forward to getting any feedback/remarks/critics/suggestions. |
rgreinho
force-pushed
the
chains-cli
branch
from
3f07132 to
8753ea7
Compare
rgreinho
force-pushed
the
chains-cli
branch
from
8753ea7 to
b795771
Compare
tekton-robot
added
size/XL
rgreinho
force-pushed
the
chains-cli
branch
from
6c99821 to
bd234d1
Compare
tekton-robot
added
size/XXL
|
/retest |
tekton-robot
added
the
approved
tekton-robot
added
the
needs-rebase
| ) | ||
|
|
||
| const ( | ||
| Namespace string = "tekton-chains" |
There was a problem hiding this comment.
This hardcoding makes it bit worrying as the namespace can be tekton-pipelines and openshift-pipelines if installed through operator
There was a problem hiding this comment.
Even for chains? So maybe we should use the namespace flag from the CLI and default to "tekton-chains" if it is not supplied?
There was a problem hiding this comment.
Is there any downside of installing chains in other namespaces? We are currently testing it in operator
There was a problem hiding this comment.
Where can one see the progress of adding chains to the tekton operator? Also is there any details on when it would be added to OpenShift pipelines or nothing yet?
There was a problem hiding this comment.
This is the PR on chains tektoncd/operator#630 It is targeted for upcoming releases i.e. Tekton Operator v0.55 and OpenShift Pipelines v1.7.0
Adds a new sub-command to simplify performing some `chains` management tasks like extracting the payload or the signature from a task run. * Adds the ability to skip verifying the payload * Adds the format sub-command * Updates dependencies
tekton-robot
removed
the
needs-rebase
|
There are a lot of errors since github.com/tektoncd/cli/cmd/tkn imports
k8s.io/client-go/plugin/pkg/client/auth: package k8s.io/client-go/plugin/pkg/client/auth provided by k8s.io/client-go at latest version v0.23.4 but not at required version v1.5.2
github.com/tektoncd/cli/pkg/actions imports
k8s.io/client-go/discovery: package k8s.io/client-go/discovery provided by k8s.io/client-go at latest version v0.23.4 but not at required version v1.5.2
github.com/tektoncd/cli/pkg/actions imports
k8s.io/client-go/dynamic: package k8s.io/client-go/dynamic provided by k8s.io/client-go at latest version v0.23.4 but not at required version v1.5.2
github.com/tektoncd/cli/pkg/actions imports
k8s.io/client-go/restmapper: package k8s.io/client-go/restmapper provided by k8s.io/client-go at latest version v0.23.4 but not at required version v1.5.2
github.com/tektoncd/cli/pkg/cli imports
k8s.io/client-go/kubernetes: package k8s.io/client-go/kubernetes provided by k8s.io/client-go at latest version v0.23.4 but not at required version v1.5.2
github.com/tektoncd/cli/pkg/cli imports
[...]Could I get some help fixing it please? |
Keep the replace function as it is like here https://github.com/tektoncd/cli/blob/main/go.mod#L44 and add the kube-api one inside it |
|
@rgreinho fixed the vendor problem, I'll carry this to get it merge quickly 👼🏼 😉 |
|
The following is the coverage report on the affected files.
|
|
The following is the coverage report on the affected files.
|
|
The following is the coverage report on the affected files.
|
Signed-off-by: Vincent Demeester <[email protected]>
|
The following is the coverage report on the affected files.
|
Signed-off-by: Vincent Demeester <[email protected]>
|
The following is the coverage report on the affected files.
|
|
/retest |
|
/lgtm |
#1498 | [Pradeep Kumar] update tkn v0.22.0 | 2022/02/01-22:04 #1499 | [Daniel Helfand] update tkn chocolatey package to v0.22.0 | 2022/02/02-10:17 #1503 | [Chmouel Boudjnah] Use ubuntu-rolling to build package | 2022/02/03-10:17 #1505 | [Shubham] Make `vendor` a PHONY target | 2022/02/07-10:50 #1500 | [Chmouel Boudjnah] Add export option for pipelinerun | 2022/02/15-12:01 #1484 | [mansi103] Checked existence of resources before deletion | 2022/02/16-13:46 #1513 | [tomonight] pass rest config when create tkn clients,fix the default QPS is to low(QPS is 5),can improve the concurrent | 2022/02/28-09:14 #1514 | [Piyush Garg] Bump deps of pipeline and triggers | 2022/02/28-13:53 #1509 | [mansi103] Adds chains version in output of tkn version command | 2022/03/01-12:52 #1440 | [Rémy Greinhofer] Add Chains management command | 2022/03/03-15:01 null | [Vincent Demeester] Fix vendoring | 2022/03/03-15:01 null | [Vincent Demeester] Temporary disable linting tarball package | 2022/03/03-15:01 null | [jbpratt] remove unnecessary filepath join | 2022/03/04-08:13 null | [jbpratt] gofmt -w test/e2e/* | 2022/03/04-08:27 null | [jbpratt] replace t.Errorf %w with %v | 2022/03/04-09:17 null | [PuneetPunamiya] Bump Tekton Hub CLI to latest | 2022/03/04-10:37 null | [Pradeep Kumar] fix missing Cursor with interactive start commands | 2022/03/04-12:13 null | [Chmouel Boudjnah] Fix tektoncd docs installation instructions | 2022/03/08-08:08 null | [Piyush Garg] Make chains namespace configurable | 2022/03/09-09:29 null | [Piyush Garg] Bump chains and hub deps | 2022/03/09-09:29 Signed-off-by: Piyush Garg <[email protected]>
Changes
Adds a new sub-command to simplify performing some
chainsmanagementtasks like extracting the payload or the signature from a task run.
The goal of this PR is to get feedback about the idea of adding a new command and
sub-commands to perform some Tekton Chains operations. I believe it
is more user-friendly to use the CLI instead of a combination of
kubectlandjq.In this PR I simply added 2 sub-commands, but in the future we could envision adding
more, like for example changing the formatter (i.e. updating the Chains config map to
switch between "tekton-provenance" and "in-toto"), or verify the validity of the
signature.
Submitter Checklist
These are the criteria that every PR should meet, please check them off as you
review them:
make checkmake generatedSee the contribution guide
for more details.
Release Notes