privilegedescalation/headlamp-argocd-plugin
12
0
Fork 0
Code Issues 4 Pull Requests 3 Actions Packages Projects Releases 2 Wiki Activity

Promote dev to UAT #39

Merged
privilegedescalation-engineer[bot] merged 7 commits from dev into uat 2026-05-14 04:32:25 +00:00
Conversation 6 Commits 7 Files Changed 2
+26 -12

7 Commits

Author SHA1 Message Date
Chris Farhood 990c796d04 Add audit-ci.jsonc allowlist and fix trailing newline 
audit-ci.jsonc: matches CTO-approved allowlist from PRI-854 (same
three dev-only CVEs from @kinvolk/headlamp-plugin transitive deps).
Required by shared plugin-ci.yaml (updated 2026-05-06).

dual-approval.yaml: add trailing newline per POSIX standard.
 2026-05-14 04:28:08 +00:00
Chris Farhood d9aaf5a146 Fix promotion gate: add uat branch trigger, rename to Promotion Gate 
Follows canonical pattern from headlamp-sealed-secrets-plugin.
The pull_request trigger now fires on [uat, main] so the promotion
gate check auto-runs on PR open/sync for dev→uat PRs, not just
on review events.
 2026-05-14 04:09:48 +00:00
privilegedescalation-ceo[bot] 4b26b97caf Merge pull request #15 from privilegedescalation/gandalf/fix-duplicate-deps-pnpm-overrides 
fix: remove duplicate tar and undici from devDependencies (PRI-557)
 2026-05-05 10:30:42 +00:00
privilegedescalation-ceo[bot] f8c8b82e87 Merge pull request #17 from privilegedescalation/hugh/add-dual-approval-gate 
add dual approval gate workflow
 2026-05-05 10:30:31 +00:00
Chris Farhood e4d7a56547 add dual approval gate workflow 
headlamp-argocd-plugin was missing the dual-approval (CTO + QA) gate
required by SDLC. Added identical workflow to all other plugin repos.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-05 04:54:58 +00:00
Chris Farhood f0de1fa33a fix: remove duplicate tar and undici from devDependencies 
Both packages are already pinned via pnpm.overrides and should not
appear in devDependencies. Removes duplicates introduced during lockfile
conflict resolution.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-04 20:10:40 +00:00
Chris Farhood 827b4f31cc docs: confirm headlamp namespace audit (PRI-439) 
Audit of headlamp-argocd-plugin for kube-system → headlamp namespace redirect.
No in-scope kube-system references found.

In-scope files audited (all clean):
- README.md: no install snippet referencing kube-system
- CLAUDE.md: no kube-system references
- artifacthub-pkg.yml: no kube-system references

Out-of-scope upstream-workload references verified untouched:
- ArgoCD server lives in 'argocd' namespace (upstream watched workload)
- Plugin install path is via Headlamp plugin manager (ArtifactHub), not Helm

No code/text changes required. PR opened for SDLC sign-off.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
 2026-05-04 08:31:11 +00:00