Security

• Feb 16, 2022 Security rbac-operator v0.21.0

  Added

  • Add cluster-namespace controller which ensures that RBAC resources to access resources in cluster namespaces can be granted to those with access to the clusters organization
  • Add bootstrapping for the read-cluster-apps and write-cluster-apps clusterRoles.
  • Add update option for orgReadClusterRoleBinding resource.

  Changed

  • The write_all_group configuration key is now optional.
• Feb 14, 2022 Security starboard-exporter v0.3.0

  Added

  • Add the image_registry label exposing the image registry.

  Changed

  • Bump golang, prometheus, and starboard dependency versions.
  • Update Grafana dashboard to use plugin version 8.3.2 and the new label.
• Feb 14, 2022 Security athena v1.5.2

  Fixed

  • Fix RBAC rule for fix secret job.
• Feb 14, 2022 Security athena v1.5.1
  • No changes compared to v1.5.0.
• Feb 14, 2022 Security athena v1.5.0

  Changed

  • Updated Ingress resources in helm chart.
  • Add workaround for Chart upgrade not working when not using lets encrypt due to changed secret type.
• Feb 8, 2022 Security starboard-app v0.5.2

  Added

  • Increase trivy scan Job memory limits to 1G.
• Feb 7, 2022 Security rbac-operator v0.20.0

  Added

  • Create RBAC for customer-facing Flux to access organization namespaces.
  • Add automation ServiceAccount to organization namespaces with permissions to handle Flux resources in that namespace by default.
• Feb 3, 2022 Security kyverno-app v0.8.0

  Removed

  • Disable policy-reporter monitoring (ServiceMonitors) by default.
• Feb 2, 2022 Security rbac-operator v0.19.1

  Fixed

  • Add missing imagePullSecret.
• Jan 28, 2022 Security starboard-app v0.5.1

  Fixed

  • Match appVersion to the starboard-operator app version.

• Newer entries
• Older entries