apiextensions-apiserver

apiextensions-apiserver copied to clipboard

ValidateCustomResource failed for map with additionalProperties of string type

4

I wrote an example test https://github.com/kubernetes/apiextensions-apiserver/pull/52/files According to https://spec.openapis.org/oas/v3.0.3#model-with-map-dictionary-properties, I should be able to validate a map with string type value using ``` { "type": "object", "additionalProperties": { "type": "string"...

yongxiu

`format=duration` kubebuilder validation accepts `d`, `w`; metav1.Duration does not

3

Despite validation of type=duration being [documented](https://github.com/kubernetes/apiextensions-apiserver/blob/29400d7010f44f7d6ad2c6762604185143382598/pkg/apis/apiextensions/v1/types_jsonschema.go#L51) as parsed by time.ParseDuration, which is [what the unmarshaller does](https://github.com/kubernetes/apimachinery/blob/df993592a122931b8aac4db57689e09458a2332c/pkg/apis/meta/v1/duration.go#L39), it is actually [parsed](https://github.com/kubernetes/apiextensions-apiserver/blob/29400d7010f44f7d6ad2c6762604185143382598/pkg/apiserver/schema/cel/values.go#L135) by strfmt.ParseDuration, which is more lenient in that it [accepts...

2uasimojo

Separate repository or Go module for API types?

9

Currently lots of tools/libraries import this repo to use `CustomResourceDefinition`/etc types. With that, [lots of dependencies](https://github.com/kubernetes/apiextensions-apiserver/blob/master/go.mod) are imported. Most of them are not needed. This is problematic for many reasons...

ash2k

CVE-2021-28235 - apiextensions-apiserver v0.25.9(go.etcd.io/etcd/v3 v 3.5.4)

2

Latest version of `apiextensions-apiserver` in 0.25.x series is 0.25.9. This uses `go.etcd.io/etcd/v3 v 3.5.4` Go package, which has CVE-2021-28235 (HIGH) Vulnerability. This Vulnerability is fixed in ``go.etcd.io/etcd/v3 v 3.5.8` and...

suneelkumar-ch