v0.8.0-rc

Changelog

• 7143a8d chore: configure trivy server image repository and tag (#732)
• 3c5e9e0 feat: add package type to vulnerability report and package_type and class to metrics (#720)
• 91d3f03 feat: record misconfig failed checks only (#724)
• 88ea735 fix: add infra assesment ttl (#722)
• c49ff27 fix: configure compress logs (#730)
• d9aa810 refactor: separate policy config with different reconciler (#728)
• dcc63aa refactor: separate scan job with different reconciler (#727)

v0.7.1

Changelog

• 46548e3 aligning config with the values for the existingSecret value (#716)

v0.7.0

Changelog

v0.7.0-rc2

Changelog

• a07a3fc release: prepare v0.7.0-rc2 (#713)
• 3e86cf2 chore: add stale bot (#712)
• 4894fa2 feat: merge rbac finding with configAudit (#711)
• 2f1abc5 fix: filter k8s core components (#710)

v0.7.0-rc

Changelog

• bd54cc1 add installed version and library to metrics (#697)
• 6d22332 build(deps): bump github.com/google/go-containerregistry (#684)
• 9fffc00 build(deps): bump github.com/onsi/gomega from 1.24.0 to 1.24.1 (#685)
• a95619c build(deps): bump golangci/golangci-lint-action from 3.3.0 to 3.3.1 (#683)
• 5fbb9ee build(deps): bump k8s.io/client-go from 0.25.3 to 0.25.4 (#686)
• a7a6465 chore: bump trivy v0.34.0 (#700)
• a67146d chore: chart-lint-trailing-spaces (#703)
• 859de72 feat: add option to use trivy in offline-scan mode (#677)
• f4fc24b feat: automatic in cluster trivy-server (#692)
• 7b4bd6b feat: record misconfig failed checks only (#681)
• 489ee6d feat: skip workload scanning by resource label (#674)
• 939ad20 feat: support k8s infra checks (#653)
• 52a09aa fix(helm): fixes the install failure when using an existing trivy-operator-trivy-config secret (#691)
• 7739d02 refactor: variable name to camel case (#672)
• 9cb2998 updating the README (#682)

v0.6.0

Discussion

Changelog

• fix: remove ingress resource from reconciling (#679)
• Dockerfile to use numeric user (#661)
• Allow users to define an external secrets for tokens (#639)
• Add support for pulling trivy scanner image from private repository #409
• Disable ingress caching by client (#662)
• Sanitize k8s metrics labels when label include special chars #649
• Re-generate config audit report following upon policies config map change #643

v0.6.0-rc3

Changelog

• 3acfc16 Update Dockerfile (#661)
• 34bbea0 build(deps): bump github.com/liamg/memoryfs from 1.4.3 to 1.5.0 (#660)
• d0192c8 build(deps): bump github.com/onsi/ginkgo/v2 from 2.4.0 to 2.5.0 (#663)
• afdd789 build(deps): bump github.com/prometheus/client_golang (#664)
• dfc5668 fix: disable ingress caching by client (#662)

v0.6.0-rc2

Changelog

v0.5.0

Discussions

Changelog

• e639c28 Add resource labels to metrics (#612)
• 2a440e3 Add vulnerability class to the report (#565)
• 1d5e3f8 [fix] typo in sample rego (#598)
• 85d3219 build(deps): bump github.com/aquasecurity/defsec from 0.80.0 to 0.80.1 (#588)
• c2968d7 build(deps): bump github.com/aquasecurity/defsec from 0.80.1 to 0.81.0 (#605)
• 4929149 build(deps): bump github.com/aquasecurity/defsec from 0.81.0 to 0.82.2 (#619)
• 994b397 build(deps): bump github.com/google/go-containerregistry (#604)
• 42c580a build(deps): bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0 (#616)
• 5d728a4 build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1 (#615)
• 18ac29f build(deps): bump golang.org/x/text from 0.3.8 to 0.4.0 (#601)
• a563700 build(deps): bump golangci/golangci-lint-action from 3.2.0 to 3.3.0 (#614)
• 381414e build(deps): bump k8s.io/api from 0.25.2 to 0.25.3 (#589)
• 52cb353 build(deps): bump k8s.io/apimachinery from 0.25.2 to 0.25.3 (#587)
• 5c2b1dd build(deps): bump k8s.io/client-go from 0.25.2 to 0.25.3 (#590)
• e10f6a4 build(deps): bump sigstore/cosign-installer from 2.8.0 to 2.8.1 (#613)
• 3d49104 chore: add team notification (#606)
• 4d01638 chore: remove compliance report param from helm (#622)
• f4faf69 feat: add scanjob automountServiceAccountToken (#610)
• 0bdc3c9 feat: add ttl to reports (#609)
• d5db6f0 feat: configure trivy output compression (#618)
• 8c1a04f feat: mark old report for deletion (#608)
• 9360dc7 fix: add scanjob tmp folder on client/server mode (#623)

v0.5.0-rc

Changelog

• e639c28 Add resource labels to metrics (#612)
• 2a440e3 Add vulnerability class to the report (#565)
• 1d5e3f8 [fix] typo in sample rego (#598)
• 85d3219 build(deps): bump github.com/aquasecurity/defsec from 0.80.0 to 0.80.1 (#588)
• c2968d7 build(deps): bump github.com/aquasecurity/defsec from 0.80.1 to 0.81.0 (#605)
• 4929149 build(deps): bump github.com/aquasecurity/defsec from 0.81.0 to 0.82.2 (#619)
• 994b397 build(deps): bump github.com/google/go-containerregistry (#604)
• 42c580a build(deps): bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0 (#616)
• 5d728a4 build(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.1 (#615)
• 18ac29f build(deps): bump golang.org/x/text from 0.3.8 to 0.4.0 (#601)
• a563700 build(deps): bump golangci/golangci-lint-action from 3.2.0 to 3.3.0 (#614)
• 381414e build(deps): bump k8s.io/api from 0.25.2 to 0.25.3 (#589)
• 52cb353 build(deps): bump k8s.io/apimachinery from 0.25.2 to 0.25.3 (#587)
• 5c2b1dd build(deps): bump k8s.io/client-go from 0.25.2 to 0.25.3 (#590)
• e10f6a4 build(deps): bump sigstore/cosign-installer from 2.8.0 to 2.8.1 (#613)
• 3d49104 chore: add team notification (#606)
• 4d01638 chore: remove compliance report param from helm (#622)
• f4faf69 feat: add scanjob automountServiceAccountToken (#610)
• 0bdc3c9 feat: add ttl to reports (#609)
• d5db6f0 feat: configure trivy output compression (#618)
• 8c1a04f feat: mark old report for deletion (#608)
• 9360dc7 fix: add scanjob tmp folder on client/server mode (#623)