Security

• Dec 6, 2023 Security kyverno-app v0.16.4

  Added

  • Add missing app.kubernetes.io/ labels to all the pods.
  • Add CiliumNetworkPolicy for individual controllers:
    • kyverno-admission-controller
    • kyverno-background-controller
    • kyverno-reports-controller
    • kyverno-cleanup-controller
    • kyverno-cleanup-jobs
    • kyverno-plugin
    • kyverno-policy-reporter
• Dec 6, 2023 Security starboard-exporter v0.7.5

  Changed

  • Configure gsoci.azurecr.io as the default container image registry.

  Removed

  • Stop pushing to openstack-app-collection.
• Dec 6, 2023 Security dex-app v1.42.3

  Changed

  • Configure gsoci.azurecr.io as the default container image registry.
• Dec 6, 2023 Security cert-manager-app v3.6.1

  Changed

  • Configure gsoci.azurecr.io as the default container image registry.
• Dec 6, 2023 Security kyverno-policies v0.20.2

  Fixed

  • Fix team ownership
• Dec 5, 2023 Security cert-manager-app v2.25.2

  Changed

  • Changed conditional for PSPs to {{- if not .global.podSecurityStandards.enforced }}
• Dec 5, 2023 Security exception-recommender v0.0.6

  Changed

  • Remove finalizers from reconcile logic.
  • Ignore skip results.
• Dec 5, 2023 Security auth-bundle v0.1.2
  • changed: deploy auth apps in auth namespace by default
• Nov 30, 2023 Security dex-app v1.42.2

  Changed

  • Don’t use oidc.customer.enabled value since it is redundant.
• Nov 30, 2023 Security exception-recommender v0.0.5

  Changed

  • Keep policy-exceptions namespace when deleting the chart.
  • Changed cleanup-job template to include selector.labels.

• Newer entries
• Older entries