Security

• Apr 26, 2022 Security starboard-exporter v0.4.1

  Added

  • Spread (jitter) re-queueing of reports by +/- 10% by default to help smooth resource utilization.
• Apr 22, 2022 Security starboard-exporter v0.4.0

  Added

  • Reconcile and expose metrics for ConfigAuditReport custom resources. Requires Starboard v0.15.0 or above.
• Apr 22, 2022 Security starboard-app v0.7.1

  Changed

  • Move crds subtree out of upstream chart.
  • Use crd-install pre-install job.
  • Move specs subtree out of upstream chart.
  • Use spec-install post-install job.
• Apr 12, 2022 Security starboard-app v0.7.0

  Changed

  • Update to upstream version 0.10.3 with starboard-operator version 0.15.3.
  • Add specs folder as a new subtree.
• Apr 12, 2022 Security trivy-app v0.3.0

  Changed

  • Update to upstream version 0.4.13/app version 0.25.0.
• Apr 11, 2022 Security cert-manager-app v2.13.0

  Changed

  • Use retagged container image for HTTP01 AcmeSolver (#212)
  • Pin kubectl to 1.23.3 in crd-install and clusterissuer-install jobs (#216)
  • Add application.giantswarm.io/team to default labels (#224).
• Apr 6, 2022 Security kyverno-policies v0.17.1

  Added

  • Push policies to giantswarm catalog.
• Apr 5, 2022 Security kyverno-policies v0.17.0

  Changed

  • Track upstream PSS policies with a subtree.
  • Push PSS policies to AWS, Azure, KVM, OpenStack, and VSphere catalogs and collections.
  • Remove catalog and collections push for common and shared policies.
• Apr 5, 2022 Security kyverno-app v0.10.0

  Changed

  • Break kyverno-policies chart into its own separate app.
  • Change kyverno chart to a subtree tracking the upstream kyverno chart.
• Apr 1, 2022 Security rbac-operator v0.26.0

  Removed

  • Remove orgpermissions controller as it is deprecated and all its resources have been cleaned up.

• Newer entries
• Older entries