By Category

Back to all categories

Security

Sep 12, 2022 Security cert-manager-app v2.16.0
Before you upgrade to this release, make sure to read the Upgrading from v1.7 to v1.8 document.
Changed
- Upgrade to upstream image v1.8.2. (#259)
Sep 12, 2022 Security athena v1.7.4
- Do not display nil value for CA in athena configmap.
Sep 12, 2022 Security athena v1.7.3
Added
- Add environment variable to override the cluster CA cert.
Sep 9, 2022 Security trivy-app v0.5.0
Added
- Implement install-modules init job to install custom modules on Trivy 0.29.2.
Changed
- Update to upstream version 0.4.16/app version 0.29.2.
Sep 9, 2022 Security starboard-exporter v0.5.2
Added
- Make interval and scrapeTimeout configurable in the service monitor via monitoring.serviceMonitor.interval and monitoring.serviceMonitor.scrapeTimeout
Sep 6, 2022 Security dex-app v1.27.0
Added
- Add giant swarm monitoring annotations for alerting in workload clusters.
Changed
- Update Dex to v2.33.0
Aug 23, 2022 Security kyverno-app v0.11.1
Changed
- Increase maximum sustained and burst Kubernetes client rate limits to 75 and 150 requests/second, respectively.
- Update policy-reporter to v2.11.1 / app v2.8.0.
Aug 22, 2022 Security cert-manager-app v2.15.3
Added
- Webhook: Add PodDisruptionBudget and pod anti-affinity.
- Startup API check: Add NetworkPolicy.
Changed
- Webhook: Increase replica count to 2.
Aug 19, 2022 Security dex-app v1.26.0
Changed
- Update Dex to v2.33.0 https://github.com/giantswarm/dex-app/pull/205
Aug 17, 2022 Security kyverno-app v0.11.0
Changed
- Update kyverno to upstream version 1.7.2 / chart version 2.5.2.
- Use pre-install CRD install Job to remove storage version v1alpha1 for several Kyverno CRDs.
- Set Kyverno to use the giantswarm-critical PriorityClass.
- Limit maximum ReportChangeRequests per namespace to 100.
- Split PolicyReports into one report per policy to support the RCR limiting and avoid cases where a report doesn’t fit into etcd.