Security

• Mar 2, 2022 Security kyverno-policies v0.16.0

  Changed

  • Policies no longer the cluster-apps-operator.giantswarm.io/version label since cluster-apps-operator don’t use it.
• Feb 28, 2022 Security falco-app v0.3.0

  Changed

  • Update to upstream falco 1.17.2/0.31.0.
  • Update to upstream falco-exporter 0.8.0/0.7.0.
• Feb 28, 2022 Security kyverno-policies v0.15.0

  Changed

  • Add default audit log config file to KubeadmControlPlane.
• Feb 24, 2022 Security dex-app v1.22.2

  Changed

  • Push to giantswarm app catalog.
• Feb 24, 2022 Security rbac-bootstrap-app v0.1.1

  Changed

  • Push to giantswarm app catalog.

  Added

  • Added some chart metadata
• Feb 23, 2022 Security dex-app v1.22.1

  Changed

  • Use user id 1000.
• Feb 23, 2022 Security dex-app v1.22.0

  Added

  • Added securityContext attribute to all deployments.
  • Add application.giantswarm.io/values-schema and application.giantswarm.io/readme annotations to Chart.yaml; use app-build-suite to generate application.giantswarm.io/metadata.

  Changed

  • Run two replicas of dex.
  • Update README for clarity.
• Feb 21, 2022 Security rbac-operator v0.22.1
  • Update some role descriptions.
  • Enhance log messages in the bootstrapping part, remove unneeded messages.
• Feb 18, 2022 Security rbac-operator v0.22.0

  Added

  • Add externalresources resource that binds read-default-catalogs and read-releases roles for any subject with org-namespace access.
  • Add creation of read-default-catalogs Role.
  • Add creation of read-releases ClusterRole.
  • Improve logging for the orgpermissions, clusternamespace, and rbac controllers.
• Feb 18, 2022 Security kyverno-app v0.8.1
  • Make PDB version conditional based on available API.

• Newer entries
• Older entries