1. Docs
  2. Changes and releases
  3. Security

Security

  • Security falco-app v0.11.2

    Added

    • Push to the default catalog.

    Changed

    • Escape + characters in .Chart.Version value when used as value for app.kubernetes.io/version label.
  • Security kyverno-app v0.24.1

    Added

    • Add io.giantswarm.application.managed chart annotations for Backstage visibility.
    • Push to the default catalog.

    Changed

    • Migrate Chart.yaml metadata annotations to new io.giantswarm.application.* format.
    • Sanitize Chart.Version when used in labels due to flux appending the artifact digest to the version.
  • Security teleport-kube-agent-app v0.10.8

    Added

    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.

    Changed

    • Migrate chart metadata annotations to OCI-compatible format.
  • Security cert-manager-app v3.11.0

    Added

    • Add Vertical Pod Autoscaler (VPA) support for webhook pods.
  • Security cert-manager-app v3.10.0

    Added

    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.
    • Add PodLogs for log collection.

    Fixed

    • Fix controller Vertical Pod Autoscaler (VPA) resource syntax.
  • Security rbac-operator v0.42.4

    Added

    • Add AWS Cluster Role Identity resource with cluster roles, automation service accounts, and user groups for default namespace management.
    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.

    Changed

    • Migrate chart metadata annotations to OCI-compatible format.
  • Security starboard-exporter v1.0.3

    Added

    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.
    • Push to the default catalog.

    Changed

    • Use AppVersion for image tag defaulting.
    • Migrate chart metadata annotations to OCI-compatible format.
  • Security organization-operator v2.1.3

    Changed

    • Build with up-to-date pipelines.
    • Migrate chart metadata annotations to OCI-compatible format.

    Added

    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.
  • Security falco-app v0.11.1

    Changed

    • Build with up-to-date pipelines.
    • Migrate chart metadata annotations to OCI-compatible format.

    Added

    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.
  • Security athena v1.15.2

    Added

    • Add io.giantswarm.application.audience and io.giantswarm.application.managed chart annotations for Backstage visibility.

    Fixed

    • Remove duplicate label giantswarm.io/service-type from the ClusterRole and ClusterRoleBinding named {{ .Values.name }} as the same value is defined in athena.labels.common.
    • Fix .image.tag as empty default. Fall back to .Chart.AppVersion if .Values.image.tag is not set. Can be used to override the image tag and aligns with our practices in other charts.