Releases: kubearmor/KubeArmor
Releases · kubearmor/KubeArmor
v1.4.0
What's Changed
- [skip ci] Update Helm Chart To v1.3.4 by @github-actions in #1733
- fix(core) : updating owner info for job/cronjob controller by @Prateeknandle in #1748
- fix(core) : owner information in logs by @Prateeknandle in #1753
- chore(CI): static builds of KubeArmor in release archives by @DelusionalOptimist in #1756
- chore(CI): publish KubeArmor tars to dockerhub by @DelusionalOptimist in #1764
- chore(deployment):update rbac rules for jobs/cronjobs for kubearmor clusterRole by @Prateeknandle in #1762
- fix(operator): fix tls rotation logic for controller by @rksharma95 in #1757
- doc(Security): Kubearmor security enhancement doc by @rksharma95 in #1778
- feat : Alert Throttling by @Prateeknandle in #1723
- fix(docs): Update KubeArmor VM/Bare-metal docs according to new conventions by @navin772 in #1777
- feat(security): Refine hostPaths/capabilities in deployments and remove init container by @daemon1024 in #1658
- fix(core):patch apparmor annotations for cronjobs and updating rbac rules by @Prateeknandle in #1768
- chore : remove kernel headers mount if btf found with
initDeploy = trueby @Aryan-sharma11 in #1785 - fix(snitch): use DirectoryOrCreate for apparmor mount in Snitch by @daemon1024 in #1788
- feat:Adding support for KubeArmorClusterPolicy by @Prateeknandle in #1772
- hotfix(controller): don't exit controller on reconciler failure for hsp and csp by @daemon1024 in #1799
- chore: workaround for login with PAT by @DelusionalOptimist in #1800
- fix(helm): quote configmap values by @tesla59 in #1795
- fix: use custom action for pushing charts by @DelusionalOptimist in #1802
- fix(logs): reset eventChan everytime
KarmorLogStart()is called by @navin772 in #1798 - fix: pass PAT as env var for gh-cli by @DelusionalOptimist in #1804
- docs: updated the main diagram & updater script by @nyrahul in #1806
- fix(core):timeout when host & cluster security policies crds are not found by @Prateeknandle in #1803
- fix(apparmor): reenable profile after parsing to make whitelisties work by @daemon1024 in #1808
- fix: default posture logs for system generated permission denied events by @Aryan-sharma11 in #1809
- fix(operator): controller image updation issue by @rksharma95 in #1801
- remove kustomize binary from the repo by @kranurag7 in #1810
- fix: ksp test failure in latest CI by @Aryan-sharma11 in #1821
- Fix hyperlink in hardening guide by @SD-13 in #1752
- add multienforcer controller by @rksharma95 in #1335
- fix(helm): create release in charts repo stable release updates by @daemon1024 in #1826
New Contributors
Full Changelog: v1.3.8...v1.4.0
Contributors
nyrahul, tesla59, and 8 other contributors
Assets 23
v1.3.8
What's Changed
- chore(CI): automate marketplace release by @rksharma95 in #1718
- Update STABLE-RELEASE to v1.3.4 by @daemon1024 in #1732
- fix(CI): fix marketplace ci by @rksharma95 in #1734
- docs: updating kubearmor use-cases by @nyrahul in #1722
- fix(CI): fix marketplace helm chart publish job by @rksharma95 in #1737
- feat : try restarting ka service in case it fails by @Aryan-sharma11 in #1738
- fix: systemd directive
RestartSecby @Aryan-sharma11 in #1740 - feat:added signed releases by @KrishAryan in #1739
- fix systemd release workflow on main by @kranurag7 in #1741
- use oidc flags with cosign by @kranurag7 in #1742
- bug: fix systemd release workflow by @kranurag7 in #1745
New Contributors
- @KrishAryan made their first contribution in #1739
Full Changelog: v1.3.4...v1.3.8
Contributors
nyrahul, daemon1024, and 4 other contributors
Assets 23
v1.3.4
What's Changed
- fix(ci): check for controller readiness after restart by @daemon1024 in #1726
Full Changelog: v1.3.3...v1.3.4
Contributors
daemon1024
Assets 23
v1.3.3
What's Changed
- Update STABLE-RELEASE to v1.3.2 by @daemon1024 in #1690
- [skip ci] Update Helm Chart To v1.3.2 by @github-actions in #1691
- fix:Update Controller Makefile to include Helm CRD and update CRDs by @sratslla in #1694
- feat(core): add label/regex matching in non-k8s by @DelusionalOptimist in #1704
- fix(workflow):OSSF run analysis version bumped to v2.3.1 by @rootxrishabh in #1707
- fix(grpc): extend grpc maxrecvmsg size for cri handlers by @rksharma95 in #1709
- fix(enforcer): suppress permission denied alerts for any non bpflsm enforcer by @daemon1024 in #1708
- fix(CI): snyk/govuln failures by updating to go 1.21.9 and other dep udpates by @DelusionalOptimist in #1713
- Add objectfile for system_monitor in release packages by @Aryan-sharma11 in #1711
- refactor(chore): fix typo in group owner by @Ankurk99 in #1719
- feat(gRPC): add tls configurations to the operator and helm by @rksharma95 in #1695
Full Changelog: v1.3.2...v1.3.3
Contributors
Ankurk99, daemon1024, and 5 other contributors
Assets 23
v1.3.2
What's Changed
- fix(core): fix panic in container IP detection by @DelusionalOptimist in #1677
- fix(bpflsm/alert): missing procname in proc alerts by @daemon1024 in #1679
- fix(core): filter watched nodes and pods server-side by @dqsully in #1676
- fix(operator): update kubearmor-scc to allow using custom seccomprofile on OpenShift by @rksharma95 in #1684
- chore(helm): use version tag for operator image by @rksharma95 in #1687
- fix(enforcer/bpflsm): panic during bpflsm cleanup by @daemon1024 in #1686
- fix(seccomp): Seccomp default to false and ARM related changes by @PrimalPimmy in #1681
- fix(snitch) : check Apparmor Fs & available lsms to set enforcer by @Prateeknandle in #1689
- fix(contribution): Update Kubernetes apt repository used in contribution guide by @AbdelrahmanElawady in #1685
- feat: Added column in ksp and hsp -owide by @sratslla in #1683
New Contributors
- @AbdelrahmanElawady made their first contribution in #1685
Full Changelog: v1.3.1...v1.3.2
Contributors
dqsully, PrimalPimmy, and 6 other contributors
Assets 23
v1.3.1
What's Changed
- Update ci-systemd-release.yml by @daemon1024 in #1672
Full Changelog: v1.3.0...v1.3.1
Contributors
daemon1024
Assets 23
v1.2.1
What's Changed
- update stable version to 1.2.0 by @Shreyas220 in #1593
- [skip ci] Update Helm Chart To v1.2.0 by @github-actions in #1594
- Update imports by @rootxrishabh in #1595
- docs(URL): Slack Invite URL update in SECURITY.md and README.md file by @Aditya-150 in #1599
- (docs): Updated getting started guide for file visibility by @PrimalPimmy in #1604
- Duplicate imports removed by @rootxrishabh in #1602
- chore: update vagrant setup scripts + sync packages by @DelusionalOptimist in #1612
- Fix : Pods not being annotated with
kubearmor-policy=enabledby Kubearmor controller by @Aryan-sharma11 in #1610 - fix(crd): add omitempty in spec for crds by @rajaSahil in #1547
- fix(monitor):handling cwd & tty for older kernel version by @Prateeknandle in #1608
- execute govulncheck in CI by @kranurag7 in #1585
- docs: AnyLog as adopter by @nyrahul in #1618
- feat: lenient apparmor profiles by @PrimalPimmy in #1583
- fix: No Source and resource telemetry by @Aryan-sharma11 in #1619
New Contributors
- @Aditya-150 made their first contribution in #1599
Full Changelog: v1.2.0...v1.2.1
Contributors
nyrahul, PrimalPimmy, and 8 other contributors
Assets 9
v1.2.0
What's Changed
- Update STABLE-RELEASE to v1.1.2 by @daemon1024 in #1574
- [skip ci] Update Helm Chart To v1.1.2 by @github-actions in #1575
- docs (maintainer's list): update maintainer's org by @Ankurk99 in #1571
- Remove residual printk logging by @shikharish in #1572
- Enhancement: Implement RBAC policy and Service Account for relay service by @Utkar5hM in #1544
- docs: Added guide for the error which occurs during installation of Kubearmor by @VedRatan in #1511
- docs: update maintainers affiliation by @nyrahul in #1576
- feat(monitor): add tty information to kernel events by @rksharma95 in #1579
- Update ADOPTERS.md by @zsmav in #1581
- docs: KubeArmor integrated with Open Horizon by @nyrahul in #1582
- feat(*): extended VM support by @DelusionalOptimist in #1448
- fix(monitor): Missing Source in Telemetry by @daemon1024 in #1587
New Contributors
- @shikharish made their first contribution in #1572
- @Utkar5hM made their first contribution in #1544
- @zsmav made their first contribution in #1581
Full Changelog: v1.1.2...v1.2.0
Contributors
nyrahul, Utkar5hM, and 7 other contributors
Assets 9
v1.1.2
What's Changed
- Update STABLE-RELEASE to v1.1.1 by @daemon1024 in #1549
- [skip ci] Update Helm Chart To v1.1.1 by @github-actions in #1550
- chore(CI): manual helm stable release trigger by @DelusionalOptimist in #1552
- workflow(github-action): workflow change to update stable init image by @nyrahul in #1555
- refactor(bpflsm): add fallback logic for enforcement, optimise ringbuffer usage by @daemon1024 in #1573
- fix(policymatcher) : fixed audit event alerts for allowed network rules by @Prateeknandle in #1569
Full Changelog: v1.1.1...v1.1.2
Contributors
nyrahul, daemon1024, and 2 other contributors
Assets 9
v1.1.1
What's Changed
- fix(core,monitor,feeder): fix telemetry missing data and configurable debug stdout logs by @DelusionalOptimist in #1534
- feat : add flag for defaultposture log in Apparmor by @Aryan-sharma11 in #1537
- fix(operaor): handle apparmor and security fs mounts by @rksharma95 in #1533
- fix(bpf) : update prepend_path for handling mount of file path by @Prateeknandle in #1542
- chore(tests): cleanup unused code and add sleep to prevent flakiness by @daemon1024 in #1548
Full Changelog: v1.1.0...v1.1.1
Contributors
daemon1024, Aryan-sharma11, and 3 other contributors