kubescape-operator-1.24.2

Kubescape is an E2E Kubernetes cluster security platform

Starting with Helm chart version 1.24.x, ApplicationProfiles are used for relevancy instead of filtered SBOMs, requiring new annotations. Upgrading from older versions will delete any existing ApplicationProfiles that lack the required WLID or InstanceID annotations (unless relevancy for vulnerability scanning capability is disabled). Additionally, please note that a workload restart will be required.

What's Changed

• operator

  Full Changelog

  • chore(deps): Bump golang.org/x/crypto from 0.27.0 to 0.31.0 by @dependabot in operator#274
  • bump dependencies to fix vulnerabilities by @matthyx in operator#275
  • fix registry scanning bug for empty repositories by @refaelm92 in operator#276
  • fix: trigger ApplicationProfile scan (relevancy) whenever the ApplicationProfile is ready by @amirmalka in operator#277
  • fix: scan only complete ApplicationProfiles by @amirmalka in operator#278

• kubevuln

  Full Changelog

  • bump vulnerable dependency by @matthyx in kubevuln#263
  • add registry image count attribute by @refaelm92 in kubevuln#264
  • fix: scan only complete ApplicationProfiles, fixed InstanceID and ImageId by @amirmalka in kubevuln#266

• storage

  Full Changelog

  • Bump depencencies by @matthyx in storage#159
  • Cleanup ApplicationProfiles with missing annotations when relevancy is enabled by @amirmalka in storage#182

Full Changelog: kubescape-operator-1.24.1...kubescape-operator-1.24.2

kubescape-operator-1.24.1

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• allow prometheus-exporter to export metrics on workload level by @hebestreit in #573
• fixed copy paste mistake for Prometheus Exporter volumes by @hebestreit in #568
• Fix scans from applicationprofiles by @matthyx in kubescape/kubevuln#262

New Contributors

• @hebestreit made their first contribution in #573

Full Changelog: kubescape-operator-1.24.0...kubescape-operator-1.24.1

kubescape-operator-1.24.0

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• use application profile instead of sbomp for relevancy by @matthyx in #509
• bump pre-release images by @matthyx in #571
• prepare for new release by @matthyx in #572

Full Changelog: kubescape-operator-1.23.5...kubescape-operator-1.24.0

kubescape-operator-1.23.5

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• remove kollector by @matthyx in #559
• update readme and diagrams by @matthyx in #560
• Commenting 2 rules and update unittest by @amitschendel in #564
• bump components for cve, add istio v1beta1 crds by @matthyx in #570

Full Changelog: kubescape-operator-1.23.4...kubescape-operator-1.23.5

kubescape-operator-1.23.4

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• image pull secret generation using provided credentials by @amirmalka in #554
• add sbom generation on node-agent feature by @matthyx in #558
• use released node-agent, prepare for release by @matthyx in #561

Full Changelog: kubescape-operator-1.23.3...kubescape-operator-1.23.4

kubescape-operator-1.23.3

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• Update governance files by @slashben in #548
• Bumping node-agent to latest version by @amitschendel in #549
• Bumping node-agent to version v0.2.188 by @amitschendel in #551
• Fixing bug where exporter config was set without synchronizer by @amitschendel in #550
• Bumping node agent by @amitschendel in #552
• mount hostpath /var to node-agent by @matthyx in #553
• • add registry statuses sync path * bump operator and kubevuln version with registry scan changes by @refaelm92 in #555
• bump chart version for release by @matthyx in #557

Full Changelog: kubescape-operator-1.23.2...kubescape-operator-1.23.3

kubescape-operator-1.23.2

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• change operator clusterrole.yaml to support create/update/delete jobs by @refaelm92 in #544
• prepare merge for storage alreadyexists by @matthyx in #545
• adding rbac for kubescape on cilium, calico and istio by @matthyx in #546
• bump chart version by @matthyx in #547

Full Changelog: kubescape-operator-1.23.1...kubescape-operator-1.23.2

kubescape-operator-1.23.1

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• update storage and rbac permissions by @matthyx in #541
• allow forcing virtual CRDs and submit by @matthyx in #542
• bump storage by @matthyx in #543

Full Changelog: kubescape-operator-1.23.0...kubescape-operator-1.23.1

kubescape-operator-1.23.0

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• The selector on the node-agent svc was not working. by @larssb in #538
• Fix that inspektor-gadget couldn't call api/v1/nodes/NODE_NAME/proxy/configz by @larssb in #533
• Prepare new release by @matthyx in #540

New Contributors

• @larssb made their first contribution in #538

Full Changelog: kubescape-operator-1.22.7...kubescape-operator-1.23.0

kubescape-operator-1.22.7

Kubescape is an E2E Kubernetes cluster security platform

What's Changed

• Fix Bezalel contact details by @Bezbran in #532
• add payload field to operator-command.crd.yaml by @refaelm92 in #536
• add operatorcommands to operator clusterrole by @refaelm92 in #534
• update synchronizer version by @amirmalka in #537
• prepare new release by @matthyx in #535

Full Changelog: kubescape-operator-1.22.6...kubescape-operator-1.22.7