- Added small fix on
podSecurityContext
forseccompProfile
.
Managed Apps
Changed
- Split Cilium PolicyExceptions per component.
- Add rules to cilium-agent PolicyException.
- Restrict Policy and ClusterPolicy to kyverno.io/v1 for wildcard policy matching
Removed
- Remove Helm
hooks
annotations from default Policies and PolicyExceptions.
Added
- Supports enabling cronjob by setting
cronjob.enabled
. Disabled by default.
Removed
- Remove duplicate default identity output entry
- Supports enabling cronjob by setting
Added
- Add cronjob to cleanup leftover teleport-kubeconfigs for deleted clusters.
- Improve README.
Added
- Label to Kubernetes secret created by teleport-tbot.
Changed
- Upgraded to Teleport
version 16
- Upgraded to Teleport
Changed
- Use teleport v16.1.4
Changed
- Rotate operator-managed certificates 16 days before their expiration, instead of 7 days.
- Update to cloudnative-pg v1.23.2 (chart v0.21.5).