Releases: kubescape/helm-charts
kubescape-operator-1.25.0
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- deprecate gateway by @amirmalka in #565
- Fix serviceScanConfig.enabled whitespace by @explsd in #578
- Added node-agent mounts by @afek854 in #579
- fix: annotation for node-agent should use dynamic name by @cyberox in #584
- fix: stop synchronizer from retrying connection on invalid credentials by @amirmalka in #585
- Update E2E tests by @amirmalka in #587
- Update missing tests values by @amirmalka in #589
- added necessary resources to ClusterRole when workload metrics are enabled by @hebestreit in #588
- Ks recurring body configurable by @Bezbran in #590
- enable air-gapped scans by @matthyx in #582
- Prepare new release 1.25.0 by @amirmalka in #586
New Contributors
Full Changelog: kubescape-operator-1.24.2...kubescape-operator-1.25.0
kubescape-operator-1.24.2
Kubescape is an E2E Kubernetes cluster security platform
Starting with Helm chart version 1.24.x, ApplicationProfiles are used for relevancy instead of filtered SBOMs, requiring new annotations. Upgrading from older versions will delete any existing ApplicationProfiles that lack the required WLID or InstanceID annotations (unless relevancy for vulnerability scanning capability is disabled). Additionally, please note that a workload restart will be required.
What's Changed
-
operator
- chore(deps): Bump golang.org/x/crypto from 0.27.0 to 0.31.0 by @dependabot in operator#274
- bump dependencies to fix vulnerabilities by @matthyx in operator#275
- fix registry scanning bug for empty repositories by @refaelm92 in operator#276
- fix: trigger ApplicationProfile scan (relevancy) whenever the ApplicationProfile is ready by @amirmalka in operator#277
- fix: scan only complete ApplicationProfiles by @amirmalka in operator#278
-
kubevuln
- bump vulnerable dependency by @matthyx in kubevuln#263
- add registry image count attribute by @refaelm92 in kubevuln#264
- fix: scan only complete ApplicationProfiles, fixed InstanceID and ImageId by @amirmalka in kubevuln#266
-
storage
- Bump depencencies by @matthyx in storage#159
- Cleanup ApplicationProfiles with missing annotations when relevancy is enabled by @amirmalka in storage#182
Full Changelog: kubescape-operator-1.24.1...kubescape-operator-1.24.2
kubescape-operator-1.24.1
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- allow prometheus-exporter to export metrics on workload level by @hebestreit in #573
- fixed copy paste mistake for Prometheus Exporter volumes by @hebestreit in #568
- Fix scans from applicationprofiles by @matthyx in kubescape/kubevuln#262
New Contributors
- @hebestreit made their first contribution in #573
Full Changelog: kubescape-operator-1.24.0...kubescape-operator-1.24.1
kubescape-operator-1.24.0
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- use application profile instead of sbomp for relevancy by @matthyx in #509
- bump pre-release images by @matthyx in #571
- prepare for new release by @matthyx in #572
Full Changelog: kubescape-operator-1.23.5...kubescape-operator-1.24.0
kubescape-operator-1.23.5
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- remove kollector by @matthyx in #559
- update readme and diagrams by @matthyx in #560
- Commenting 2 rules and update unittest by @amitschendel in #564
- bump components for cve, add istio v1beta1 crds by @matthyx in #570
Full Changelog: kubescape-operator-1.23.4...kubescape-operator-1.23.5
kubescape-operator-1.23.4
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- image pull secret generation using provided credentials by @amirmalka in #554
- add sbom generation on node-agent feature by @matthyx in #558
- use released node-agent, prepare for release by @matthyx in #561
Full Changelog: kubescape-operator-1.23.3...kubescape-operator-1.23.4
kubescape-operator-1.23.3
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- Update governance files by @slashben in #548
- Bumping node-agent to latest version by @amitschendel in #549
- Bumping node-agent to version v0.2.188 by @amitschendel in #551
- Fixing bug where exporter config was set without synchronizer by @amitschendel in #550
- Bumping node agent by @amitschendel in #552
- mount hostpath /var to node-agent by @matthyx in #553
-
- add registry statuses sync path * bump operator and kubevuln version with registry scan changes by @refaelm92 in #555
- bump chart version for release by @matthyx in #557
Full Changelog: kubescape-operator-1.23.2...kubescape-operator-1.23.3
kubescape-operator-1.23.2
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- change operator clusterrole.yaml to support create/update/delete jobs by @refaelm92 in #544
- prepare merge for storage alreadyexists by @matthyx in #545
- adding rbac for kubescape on cilium, calico and istio by @matthyx in #546
- bump chart version by @matthyx in #547
Full Changelog: kubescape-operator-1.23.1...kubescape-operator-1.23.2
kubescape-operator-1.23.1
kubescape-operator-1.23.0
Kubescape is an E2E Kubernetes cluster security platform
What's Changed
- The selector on the node-agent svc was not working. by @larssb in #538
- Fix that inspektor-gadget couldn't call api/v1/nodes/NODE_NAME/proxy/configz by @larssb in #533
- Prepare new release by @matthyx in #540
New Contributors
Full Changelog: kubescape-operator-1.22.7...kubescape-operator-1.23.0