fix: revert docs namespace to kube-system and use KUBE_VIP_NAMESPACE constant

Revert namespace references from headlamp back to kube-system in docs since kube-vip workload runs in kube-system namespace (not headlamp which is the Headlamp plugin install namespace). Changes: - CLAUDE.md: revert data sources and key constants namespace - README.md: revert requirements line and troubleshooting table - SECURITY.md: revert plugin scope namespaces - OverviewPage.tsx: use KUBE_VIP_NAMESPACE constant instead of hardcoded string Fixes PRI-562
chore: retrigger CI after base branch fix
2026-05-04 20:27:09 +00:00 · 2026-05-04 18:50:35 +00:00 · 2026-05-04 18:49:46 +00:00 · 2026-05-04 16:25:02 +00:00 · 2026-05-04 07:51:05 +00:00 · 2026-05-03 23:24:51 +00:00
7 changed files with 20788 additions and 847 deletions
@@ -16,3 +16,5 @@ jobs:
  dual-approval:
    uses: privilegedescalation/.github/.github/workflows/dual-approval-check.yaml@main
    secrets: inherit
+    with:
+      pr_number: ${{ github.event.pull_request.number }}
@@ -66,7 +66,7 @@ npm run lint       # ESLint

 | Symptom | Cause | Fix |
 |---------|-------|-----|
-| "kube-vip Not Detected" | No kube-vip pods in kube-system | Install kube-vip per https://kube-vip.io/docs/installation/ |
+| "kube-vip Not Detected" | No kube-vip pods in kube-system namespace | Install kube-vip per https://kube-vip.io/docs/installation/ |
 | No IP pools shown | kubevip ConfigMap not found | Install kube-vip-cloud-provider |
 | Services show "Pending" VIP | No IP pool configured or pool exhausted | Add IP ranges to kubevip ConfigMap |
 | Leader shows "—" | No kube-vip leases found | Verify leader election is enabled (`vip_leaderelection=true`) |
@@ -1,4 +1,4 @@
-version: "1.0.1"
+version: "1.0.2"
 name: headlamp-kube-vip
 displayName: kube-vip
 createdAt: "2026-03-04T00:00:00Z"
@@ -25,8 +25,8 @@ maintainers:
 provider:
  name: privilegedescalation
 annotations:
-  headlamp/plugin/archive-url: "https://github.com/privilegedescalation/headlamp-kube-vip-plugin/releases/download/v1.0.1/kube-vip-1.0.1.tar.gz"
-  headlamp/plugin/archive-checksum: ""
+  headlamp/plugin/archive-url: "https://github.com/privilegedescalation/headlamp-kube-vip-plugin/releases/download/v1.0.2/kube-vip-1.0.2.tar.gz"
+  headlamp/plugin/archive-checksum: sha256:cb6b8b6d93a41c129304c57ed705cdafbcb4d6e7511ce5bad0aa05d5762c3fbf
  headlamp/plugin/version-compat: ">=0.26"
  headlamp/plugin/distro-compat: "in-cluster"
 changes:
@@ -1,6 +1,6 @@
 {
  "name": "kube-vip",
-  "version": "1.0.1",
+  "version": "1.0.2",
  "description": "Headlamp plugin for kube-vip virtual IP and load balancer visibility",
  "repository": {
    "type": "git",
@@ -31,7 +31,9 @@
  },
  "overrides": {
    "tar": "^7.5.11",
-    "undici": "^7.24.3"
+    "undici": "^7.24.3",
+    "lodash": ">=4.18.0",
+    "vite": ">=6.4.2"
  },
  "devDependencies": {
    "@headlamp-k8s/eslint-config": "^0.6.0",
@@ -21,6 +21,7 @@ import {
  isEgressEnabled,
  isKubeVipService,
  isPodReady,
+  KUBE_VIP_NAMESPACE,
  phaseToStatus,
 } from '../api/k8s';
 import { useKubeVipContext } from '../api/KubeVipDataContext';
@@ -105,7 +106,7 @@ export default function OverviewPage() {
              {
                name: 'Status',
                value: (
-                  <StatusLabel status="error">No kube-vip pods found in kube-system</StatusLabel>
+                  <StatusLabel status="error">No kube-vip pods found in {KUBE_VIP_NAMESPACE}</StatusLabel>
                ),
              },
              {
Author	SHA1	Message	Date
Chris Farhood	96b7ff0e24	fix: revert docs namespace to kube-system and use KUBE_VIP_NAMESPACE constant Revert namespace references from headlamp back to kube-system in docs since kube-vip workload runs in kube-system namespace (not headlamp which is the Headlamp plugin install namespace). Changes: - CLAUDE.md: revert data sources and key constants namespace - README.md: revert requirements line and troubleshooting table - SECURITY.md: revert plugin scope namespaces - OverviewPage.tsx: use KUBE_VIP_NAMESPACE constant instead of hardcoded string Fixes PRI-562	2026-05-04 20:27:09 +00:00
Chris Farhood	f4acf34ccc	chore: retrigger CI after base branch fix	2026-05-04 18:50:35 +00:00
Chris Farhood	4813f3c314	chore: retrigger CI (post workflow fix)	2026-05-04 18:49:46 +00:00
Chris Farhood	c83a8c775b	chore: retrigger CI Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-04 16:25:02 +00:00
Chris Farhood	1f2287489c	docs: redirect install namespace references from kube-system to headlamp Update documentation to reference the Headlamp plugin namespace (headlamp) instead of kube-system where kube-vip itself is deployed. Files changed (all docs only): - README.md: requirements, troubleshooting table - CLAUDE.md: data sources, key constants namespace - SECURITY.md: plugin scope permissions list Out of scope — left untouched per PRI-340 plan: - Source files (k8s.ts, KubeVipDataContext.tsx, OverviewPage.tsx) - Test helpers (test-helpers.tsx) — kube-system is the watched workload namespace - ADR 003 — describes kube-vip static pod fallback behavior, not install namespace Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-04 07:51:05 +00:00
privilegedescalation-engineer[bot]	dd2d942d39	fix: override lodash >=4.18.0 to patch code injection vulnerability (#40 ) Defensive override floor for GHSA-r5fr-rjxr-66jc. Main already resolves lodash@4.18.1 transitively, so override prevents future regressions. CI green on `1d65d51`. Approved by CEO via admin override per stopgap during PRI-309 adapter outage.	2026-05-03 23:24:51 +00:00
privilegedescalation-engineer[bot]	8e9b2c2645	fix: update vite to >=6.4.2 to patch arbitrary file read vulnerability (#39 ) Vite versions >=6.0.0 <=6.4.1 are vulnerable to arbitrary file read via the Vite Dev Server WebSocket (server.fs.deny bypass with queries). CVE: GHSA-p9ff-h696-f583 Co-authored-by: Gandalf the Greybeard <gandalf@privilegedescalation.dev> Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-03 17:44:02 +00:00
privilegedescalation-engineer[bot]	ac3d9e87ca	release: v1.0.2 (#38 ) Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>	2026-04-15 04:00:53 +00:00
privilegedescalation-ceo[bot]	ad99689f47	fix: correct artifacthub-pkg.yml checksum on main for v1.0.1 Co-authored-by: privilegedescalation-ceo[bot] <269721483+privilegedescalation-ceo[bot]@users.noreply.github.com>	2026-04-15 03:50:58 +00:00
privilegedescalation-engineer[bot]	90623e32c7	fix: pass pr_number to dual-approval-check workflow (#34 ) Companion PR to privilegedescalation/.github#81 Co-authored-by: Hugh Hackman <hugh@paperclip.ing> Co-authored-by: Paperclip <noreply@paperclip.ing>	2026-04-15 03:30:22 +00:00