| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: starboard | Distribution: openSUSE Tumbleweed |
| Version: 0.15.22 | Vendor: openSUSE |
| Release: 1.1 | Build date: Mon Sep 30 18:43:07 2024 |
| Group: Unspecified | Build host: reproducible |
| Size: 124234882 | Source RPM: starboard-0.15.22-1.1.src.rpm |
| Packager: https://bugs.opensuse.org | |
| Url: https://github.com/aquasecurity/starboard | |
| Summary: Kubernetes-native security toolkit | |
Starboard integrates security tools into the Kubernetes environment, so that users can find and view the risks that relate to different resources in a Kubernetes-native way. Starboard provides custom resources definitions and a Go module to work with a range of existing security scanners, as well as a kubectl-compatible command, the Octant plugin, and the Lens extension that make security reports available through familiar Kubernetes tools.
Apache-2.0
* Mon Sep 30 2024 opensuse_buildservice@ojkastl.de
- Update to version 0.15.22:
* release: prepare v0.15.22 (#1400)
* The vulnerabilities have been fixed by bumping the Go version
and by updating the opa. (#1398)
* Tue Jul 16 2024 opensuse_buildservice@ojkastl.de
- Update to version 0.15.21:
* release: prepare v0.15.21 (#1395)
* fix: resolved security vulnerabilities in starboard (#1394)
* Sun Mar 17 2024 opensuse_buildservice@ojkastl.de
- Update to version 0.15.20:
* fix: failure in goreleaser (#1390)
* fix: goreleaser pipeline failure (#1389)
* chore: remove cleanup action (#1388)
* chore: remove release pipeline cache (#1387)
* chore: remove release pipeline cache (#1386)
* chore: remove release pipeline cache (#1385)
* fix: release pipeline failure (#1384)
* release: prepare v0.15.20 (#1383)
* chore: add alpine based fips image (#1381)
* chore: update go version to 1.21 (#1380)
* chore: Add ubi9 images for starboard-operator (#1379)
* Sun Mar 17 2024 opensuse_buildservice@ojkastl.de
- Update to version 0.15.19:
* release: prepare v0.15.19 (#1377)
* fix: Mark old revision configaudit report for deletion (#1376)
* Thu Dec 07 2023 kastl@b1-systems.de
- Update to version 0.15.18:
* release: prepare v0.15.18 (#1375)
* Fix security vulnerabilities in starboard-operator:0.15.17
(#1374)
* Thu Dec 07 2023 kastl@b1-systems.de
- Update to version 0.15.17:
* release: prepare-v0.15.17 (#1373)
* Thu Oct 19 2023 kastl@b1-systems.de
- Update to version 0.15.16:
* release: prepare v0.15.16 (#1371)
* release: prepare v0.15.16-rc (#1370)
* Tue Sep 05 2023 kastl@b1-systems.de
- Update to version 0.15.15:
* release: prepare v0.15.15 (#1369)
* release: prepare v0.15.14 (#1368)
* chore: release fips enabled images (#1364)
* opa version upgrade to latest (#1367)
* fix: Fix crd names error for roles (#1365)
- skipping non-existent release 0.15.14
* Fri Jun 16 2023 kastl@b1-systems.de
- Update to version 0.15.13:
* chore: bump go version release 1.19 (#1363)
* release: prepare v0.15.13 (#1362)
* chore: resolve libssl vulnerability (#1361)
* bugfix: Support configauditing for rbac resource with capital
letter name (#1356)
* feat: Support scan latest revision for replicationController
from DeploymentConfig (#1352)
* Mon Apr 24 2023 kastl@b1-systems.de
- Update to version 0.15.12:
* release: prepare v0.15.12 (#1343)
* release: prepare v0.15.12-rc (#1340)
* chore: update base image to alpine:3.17 (#1338)
* chore: bump base image and golang.org/x/net (#1335)
* chore(deps): bump k8s.io/klog/v2 from 2.70.1 to 2.90.1 (#1328)
* release: prepare v0.15.11 (#1294)
* Wed Oct 19 2022 kastl@b1-systems.de
- Update to version 0.15.11:
* chore: vulnerability-CVE-2022-32149 (#1293)
* chore: add team notification on vulnerabilities found (#1288)
* chore: add team notification on vulnerabilities found (#1286)
* Fri Sep 30 2022 kastl@b1-systems.de
- Update to version 0.15.10:
* release: prepare v0.15.10 (#1279)
* chore: disable aqua image scanning (#1282)
* chore: upgrade alpine v3.16.2 (#1281)
* chore: upgrade alpine v3.16.2 (#1280)
* fix: vulnerabilities (#1278)
* Sun Sep 25 2022 kastl@b1-systems.de
- Update to version 0.15.9:
* release: prepare v0.15.9 (#1273)
* Using latest tag everytime for ubi-minimal (#1269)
* release: prepare v0.15.9-rc3 (#1266)
* release: prepare v0.15.9-rc2 (#1265)
* release: prepare v0.15.9-rc (#1264)
* feat: k8s resource computability (#1259)
* Wed Sep 07 2022 kastl@b1-systems.de
- Update to version 0.15.8:
* release: prepare v0.15.8 (#1255)
* chore(deps): bump k8s.io/code-generator from 0.24.1 to 0.24.3 (#1233)
* chore(deps): bump k8s.io/client-go from 0.24.1 to 0.24.3 (#1231)
* chore(deps): bump github.com/open-policy-agent/opa from 0.40.0 to 0.43.0 (#1235)
* Updating license to correct location in ubi image (#1244)
* Wed Sep 07 2022 kastl@b1-systems.de
- Update to version 0.15.7:
* fix: fix goreleaser to include LICENSE (#1242)
* release: prepare v0.15.7 (#1241)
* chore(deps): bump kube-bench from v0.6.6 to v0.6.9 (#1240)
* Adding existing starboard license in ubi image (#1238)
* docs(operator): add what next for trivy Q&A (#1213)
* docs: deprecation notice (#1211)
* Sat Jun 04 2022 kastl@b1-systems.de
- Update to version 0.15.6:
* release: prepare v0.15.6 (#1210)
* Wed Jun 01 2022 kastl@b1-systems.de
- mitigate CVE-2022-28946 (bsc#1199760)
- Update to version 0.15.5:
* release: prepare v0.15.5 (#1209)
* chore(deps): bump github.com/caarlos0/env/v6 from 6.9.2 to 6.9.3 (#1208)
* chore(deps): bump goreleaser/goreleaser-action from 2 to 3 (#1198)
* chore(deps): bump k8s.io/code-generator from 0.24.0 to 0.24.1 (#1206)
* chore(deps): bump k8s.io/cli-runtime from 0.24.0 to 0.24.1 (#1203)
* chore(deps): bump github.com/hashicorp/go-version from 1.4.0 to 1.5.0 (#1197)
* Added Region support for ECR-Registry handling. (#1191)
* chore(deps): bump github.com/google/go-containerregistry (#1196)
* chore(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.1 (#1195)
* chore(deps): bump github.com/caarlos0/env/v6 from 6.9.1 to 6.9.2 (#1194)
* chore(deps): bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 (#1188)
* chore: bump k8s.io to version 0.24.0 (#1193)
* chore(deps): bump docker/setup-qemu-action from 1 to 2 (#1178)
* chore(deps): bump docker/setup-buildx-action from 1 to 2 (#1177)
* chore(deps): bump docker/login-action from 1 to 2 (#1176)
* chore(deps): bump github.com/google/go-cmp from 0.5.7 to 0.5.8 (#1171)
* chore(deps): bump github.com/open-policy-agent/opa from 0.39.0 to 0.40.0 (#1170)
* feat(configaudit): only scan current revision of deployments (#1148)
* feat(trivy): add mirror config in helm chart (#1159)
* feat: remove 'all' category from vuln and configaudit CRDs (#1156)
* chore(deps): bump k8s.io/cli-runtime from 0.23.5 to 0.23.6 (#1153)
* chore(deps): bump k8s.io/client-go from 0.23.5 to 0.23.6 (#1151)
* chore(deps): bump k8s.io/code-generator from 0.23.5 to 0.23.6 (#1150)
* Modified Decode() to use SplitN rather than Split. This allows GCR auths to be split that contain multiple : characters. (#1126)
* chore(deps): bump github.com/emirpasic/gods from 1.15.0 to 1.18.1 (#1141)
* chore(deps): bump rajatjindal/krew-release-bot from 0.0.42 to 0.0.43 (#1139)
* Thu Apr 14 2022 kastl@b1-systems.de
- Update to version 0.15.4:
* chore: fix Go code formatting (#1137)
* release: prepare v0.15.4 (#1136)
* fix: GoReleaser manifest (#1135)
* chore: build operator images based on UBI 8 Minimal (#1127)
* chore(deps): bump github.com/emirpasic/gods from 1.12.0 to 1.15.0 (#1132)
* chore(deps): bump codecov/codecov-action from 2 to 3 (#1128)
* chore(deps): bump actions/setup-python from 3.1.0 to 3.1.2 (#1129)
* chore(deps): bump actions/setup-go from 2 to 3 (#1130)
* chore(ci): fix release snapshot workflow (#1124)
* feat(trivy): configure --db-repository to get advisory database from OCI registry (#1064)
* chore(ci): grant contents permission in docs publishing workflow (#1121)
* Thu Apr 14 2022 kastl@b1-systems.de
- Update to version 0.15.3:
* release: v0.15.3 (#1120)
* chore(ci): set permissions granted to the GITHUB_TOKEN (#1119)
* chore(ci): cancel any in-flight jobs for the same PR branch (#1116)
* fix: critial is a typo (#1117)
* release: prepare v0.15.2 (#1114)
* Thu Apr 14 2022 kastl@b1-systems.de
- Update to version 0.15.2:
* release: prepare v0.15.2
* fix: limit the num of failure entries in compliance detail report (#1108)
* docs(contributing): use conventional commits (#1094)
* chore(deps): bump github.com/open-policy-agent/opa from 0.38.1 to 0.39.0 (#1111)
* chore(deps): bump sigs.k8s.io/controller-runtime from 0.11.1 to 0.11.2 (#1110)
* chore(deps): bump actions/setup-python from 3.0.0 to 3.1.0 (#1109)
* Mon Apr 04 2022 kastl@b1-systems.de
- Update to version 0.15.1:
* release: prepare v0.15.1 (#1107)
* fix: revert CronJobs to batch/v1beta1 (#1105)
* chore: add log context when nsa update fails (#1104)
* fix: krew manifest (#1091)
* Fri Apr 01 2022 kastl@b1-systems.de
- Update to version 0.15.0:
* release: prepare v0.15.0 (#1089)
* docs: add troubleshooting guide (#1082)
* docs: revisit configuration auditing (#1083)
* chore(deps): bump kube-hunter from v0.6.3 to v0.6.5 (#1088)
* chore(deps): bump kube-bench from v0.6.5 to v0.6.6 (#1087)
* docs(design): specify life cycle for ClusterVulnerabilityReport resources (#1017)
* chore: add pr template (#1084)
* docs: compliance reports support (#1079)
* docs(tutorial): Writing Custom Configuration Audit Policies (#1075)
* chore(deps): bump github.com/onsi/gomega from 1.18.1 to 1.19.0 (#1078)
* chore: nsa spec data typo (#1077)
* docs(olm): fix OperatorGroup to select all namespaces (#1074)
* release: prepare v0.15.0-rc7 (#1073)
* chore(deploy): configure operator to select all namespaces, except kube-system and starboard-system by default (#1072)
* feat: exclude certain namespaces from scanning (#1071)
* feat(vulnerabilityreports): use deterministic names for secrets associated with scan jobs (#1069)
* refactor: VulnerabilityReportReconciler to WorkloadController (#1068)
* chore: install the nsa ClusterComplianceReport resource separately (#1067)
* docs: update installation guides for v0.15.0 (#1063)
* release: prepare v0.15.0-rc6 (#1060)
* release: prepare v0.15.0-rc5 (#1058)
* release: prepare v0.15.0-rc4 (#1056)
* release: prepare v0.15.0-rc3 (#1055)
* chore(release): skip publishing to ECR (#1054)
* release: prepare v0.15.0-rc2 (#1053)
* fix(goreleaser): fix typo in container image name (#1052)
* release: prepare v0.15.0-rc1 (#1051)
* chore: change KSV038 kind type (#1050)
* docs: update configuration auditing (#1040)
* chore(deps): bump github.com/go-logr/logr from 1.2.2 to 1.2.3 (#1049)
* chore(deps): bump k8s.io/klog/v2 from 2.30.0 to 2.60.1 (#1048)
* chore(deps): bump k8s.io/code-generator from 0.23.4 to 0.23.5 (#1047)
* chore(deps): bump k8s.io/cli-runtime from 0.23.4 to 0.23.5 (#1043)
* chore(deps): bump k8s.io/api from 0.23.4 to 0.23.5 (#1044)
* chore(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1 (#1046)
* chore(deps): bump actions/cache from 2 to 3 (#1042)
* feat: compliance support for cli (#1039)
* feat: add resource quota and limit range support (#1035)
* docs: add nsa 1.0 spec (#1033)
* feat: use oci image spec annotations (#1037)
* Feat/add compliance check default status (#1030)
* chore(deps): bump helm/chart-testing-action from 2.2.0 to 2.2.1 (#1026)
* chore(deps): bump github.com/open-policy-agent/opa from 0.38.0 to 0.38.1 (#1027)
* feat(cli): use built-in scanner for configuration audits (#1018)
* chore(deps): bump github.com/spf13/cobra from 1.3.0 to 1.4.0 (#1028)
* test: update compliance reconcile tests (#1021)
* refactor: use ttl check with date util (#1015)
* fix: remove compliance specKind field (#1016)
* fix(helm): grant permissions to get,list,watch ciskubebenchreports (#1013)
* chore: update release checklist (#1014)
* docs: design compliance report (#961)
* fix: generate deploy/static/starboard.yaml (#1011)
* feat: consolidate compliance and detail summary model (#1012)
* feat(compliance): add severity to checks (#1009)
* refactor: decouple policy pkg from starboard apis (#1010)
* chore(deps): bump github.com/open-policy-agent/opa from 0.37.2 to 0.38.0 (#1006)
* feat: support compliance reports (#1004)
* chore(deps): bump trivy from v0.23.0 to v0.24.2 (#1008)
* feat: enable trivy server with self-signed certificates (#1003)
* chore(deps): bump actions/checkout from 2 to 3 (#1005)
* feat: built-in OPA Rego policy-based configuration audit scanner (#971)
* docs(design): Caching Scan Results by Image Reference (#740)
* feat: allow config check to contain zero to many messages (#998)
* fix(ci): use Go 1.17 in release snapshot workflow (#997)
* chore: add script to generate deploy/static/starboard.yaml (#996)
* refactor(itest): create or update configuration objects (#995)
* chore(ci): release unversioned snapshot every night (#994)
* refactor: parse severity from name (#993)
* feat: update severity enum in config audit check (#992)
* docs: update from 2021 to 2022 (#989)
* chore(deps): bump golangci/golangci-lint-action from 2 to 3.1.0 (#988)
* chore(deps): bump actions/setup-python from 2.3.2 to 3 (#987)
* feat(aqua): add filesystem scan option (#986)
* feat(aqua-enterprise): add support for filesystem scanning (#985)
* feat: add option to run vulnerability scan jobs in workload namespace (#943)
* chore(deps): bump sigs.k8s.io/controller-runtime from 0.11.0 to 0.11.1 (#979)
* chore(deps): bump k8s.io/cli-runtime from 0.23.3 to 0.23.4 (#981)
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.23.3 to 0.23.4 (#983)
* chore(deps): bump k8s.io/code-generator from 0.23.3 to 0.23.4 (#977)
* chore(deps): bump k8s.io/client-go from 0.23.3 to 0.23.4 (#980)
* chore(deps): upgrade OLM from v0.18.3 to v0.20.0 (#975)
* chore(operator): streamline installation with kubectl (#972)
* refactor: GetRelatedReplicasetName (#970)
* refactor: rename ObjectToObjectMetadata to ObjectToObjectMeta (#969)
* chore: bump batchv1beta1 to batchv1 (#968)
* feat(trivy): configure timeout (#967)
* fix: delete scan jobs if their pods have already been deleted and we cannot collect logs (#956)
* feat(trivy): mount emptyDir volume on /tmp path (#965)
* chore: add support to s390x arch (#960)
* chore(deps): bump Conftest from v0.28.2 to v0.30.0 (#964)
* chore(deps): bump Trivy from v0.22.0 to v0.23.0 (#963)
* refactor: move plugin constants from generic starboard config (#962)
* docs: integrate with ACR managed registry (#908)
* chore: support ARM architecture (#958)
* chore(deps): bump actions/setup-python from 2.3.1 to 2.3.2 (#951)
* docs(design): schedule vulnerability scans in workload's namespace (#917)
* docs(CONTRIBUTING.md): fix instructions to run integration tests (#947)
* chore(deps): bump github.com/onsi/gomega from 1.18.0 to 1.18.1 (#945)
* chore(deps): bump k8s.io/cli-runtime from 0.23.2 to 0.23.3 (#938)
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.23.2 to 0.23.3 (#937)
* Wed Jan 26 2022 Johannes Kastl <kastl@b1-systems.de>
- BuildRequire go1.17
* Wed Jan 26 2022 kastl@b1-systems.de
- Update to version 0.14.1:
* release: prepare v0.14.1 (#932)
* chore(deps): bump Trivy from v0.20.0 to v0.22.0 (#931)
* fix: handle error when operator cannot start (#930)
* chore(deps): bump controller-runtime from v0.10.0 to v0.11.0 (#927)
* chore(deps): bump Go from 1.16 to 1.17 (#928)
* chore(deps): bump github.com/onsi/gomega from 1.17.0 to 1.18.0 (#920)
* feat: use trivy filesystem scanner (#872)
* Sun Jan 23 2022 kastl@b1-systems.de
- Update to version 0.14.0:
* release: prepare v0.14.0 (#910)
* chore: scan images for vulnerabilities (#907)
* release: prepare v0.14.0-rc2 (#906)
* docs: revisit documentation pages for consistency (#905)
* docs: separate commands from output in getting started guides (#750)
* refactor: review and cleanup starboard config package (#904)
* feat: allow configuring pod template labels attached to scan jobs (#902)
* docs(design): update Scan Container Images with Trivy Filesystem Scanner (#900)
* release: prepare v0.14.0-rc1 (#901)
* docs(design): vulnerability rescan of K8s workloads based on report TTL (#863)
* feat: vulnerability rescan of K8s workloads based on report TTL (#879)
* docs(design): Scan Container Images with Trivy Filesystem Scanne (#830)
* fix: trivy uses deprecated subcommand (#891)
* refactor: pass client.Object instead of PodSpec to vulnerabilityreport.Plugin (#894)
* chore(deps): bump github.com/google/go-containerregistry (#897)
* chore(deps): bump helm/chart-testing-action from 2.1.0 to 2.2.0 (#895)
* chore(deps): bump actions/setup-python from 2 to 2.3.1 (#896)
* chore(deps): bump github.com/hashicorp/go-version from 1.3.0 to 1.4.0 (#898)
* refactor: rename kube.Object to kube.ObjectRef (#890)
* feat: allow scanning only current revision of deployment (#870)
* feat: add TRIVY_NON_SSL config and environment variable (#854)
* chore(ci): test Helm chart in the PR validation workflow (#829)
* feat(helm): make .trivyignore file a configurable value (#885)
* chore(deps): bump github.com/caarlos0/env/v6 from 6.8.0 to 6.9.1 (#881)
* chore: describe release steps (#883)
* chore(deps): bump github.com/spf13/cobra from 1.2.1 to 1.3.0 (#876)
* fix: typo in GetLogsByJobAndContainerName error message (#869)
* Fri Jan 07 2022 kastl@b1-systems.de
- Update to version 0.13.2:
* release: prepare v0.13.2 (#862)
* chore(ci): publish mkdocs and Helm chart from the specified ref (#861)
* docs: review variables used in mkdocs (#860)
* fix: parse registry credentials when the auth property is blank (#859)
* test(cli): scanning images from private registries (#840)
* chore(ci): release unversioned snapshot when integration tests pass (#846)
* chore(ci) : setup golangci-lint action (#845)
* chore(deps): upgrade base alpine container images from 3.14 to 3.15 (#844)
* chore(deps): bump github.com/caarlos0/env/v6 from 6.7.2 to 6.8.0 (#843)
* docs: release v0.13.1 (#839)
* Fri Jan 07 2022 kastl@b1-systems.de
- Update to version 0.13.1:
* release: prepare v0.13.1 (#838)
* fix: scan images from private registries using imagePullSecrets (#837)
* chore: test Helm chart before publishing it to Aqua repo (#819)
* chore(deps): bump k8s.io/cli-runtime from 0.22.3 to 0.22.4 (#825)
* chore(deps): bump sigs.k8s.io/controller-runtime from 0.10.2 to 0.10.3 (#820)
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.22.3 to 0.22.4 (#824)
* chore(deps): bump k8s.io/client-go from 0.22.3 to 0.22.4 (#822)
* docs: add high-level diagram (#816)
* docs: update README.md (#815)
* docs: update project overview (#814)
* chore(deps): bump github.com/google/go-containerregistry (#812)
* docs: update README.md (#811)
* docs: update README.md (#809)
* docs: fix helm command to install starboard with conftest policies (#807)
* docs: release v0.13.0 (#806)
* Fri Jan 07 2022 kastl@b1-systems.de
- Update to version 0.13.0:
* release: prepare v0.13.0 (#805)
* fix: list active ReplicaSets in the given namespace (#804)
* docs: review and update docs (#803)
* docs: update starboard settings (#802)
* docs(operator): update getting started guide (#801)
* docs(cli): update getting started guide (#800)
* chore(deploy): align static YAMLs with Helm templates (#799)
* chore(deps): bump github.com/onsi/gomega from 1.16.0 to 1.17.0 (#798)
* chore(deploy): add recommended labels (#797)
* chore(deploy): add service to expose Prometheus metrics (#796)
* chore(helm): remove envSecret value (#795)
* chore(deps): bump k8s.io/cli-runtime from 0.22.2 to 0.22.3 (#789)
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.22.2 to 0.22.3 (#788)
* release: Prepare v0.13.0-rc2 (#786)
* chore(deps): bump conftest from v0.25.0 to v0.28.2 (#785)
* feat(conftest): assert that resource kinds are defined for policies (#784)
* refactor: remove ObjectFromLabelsSet method (#783)
* chore(reps): upgrade kube-bench from v0.6.3 to 0.6.5 (#782)
* chore: use starboard-system namespace to install the operator (#779)
* docs: update Conftest integration (#778)
* docs(tutorial): manage access to security reports (#776)
* docs: update installation with Helm (#775)
* release: Prepare v0.13.0-rc1 (#774)
* fix: cannot create vulnerability report because name is too long (#773)
* refactor(operator): use builder to construct vulnerability scan jobs (#770)
* feat(conftest): associate Rego policies with K8s resources (#752)
* docs(design): Associating Rego Policies with Kubernetes Resources (#746)
* refactor: use builder to construct vulnerability scan jobs (#768)
* fix(trivy): add Linux nodeAffinity to scan job in ClientServer mode (#769)
* test: encode objects as labels and annotations (#767)
* fix: panic when image pull secret cannot be parsed (#764)
* feat(cli): make get vulnerabilityreports cmd compatible with kubectl get cmd (#766)
* feat: Explain VulnerabilityReport and ClusterVulnerabilityReport CRDs (#765)
* docs: Integrated infrastructure scanners (#758)
* chore(deps): Bump kube-hunter from v0.6.1 to v0.6.3 (#761)
* chore(deps): Bump Polaris from v4.0 to v4.2 (#760)
* chore(deps): Bump github.com/onsi/ginkgo from 1.16.4 to 1.16.5 (#755)
* chore(deps): Bump github.com/caarlos0/env/v6 from 6.7.1 to 6.7.2 (#754)
* fix: Resolve report owner for non workload objects (#753)
* docs: Update design docs index (#745)
* docs(design): Managing Access to Security Reports (#734)
* chore(deps): Bump sigs.k8s.io/controller-runtime from 0.10.1 to 0.10.2 (#743)
* chore(cli): Add info banner on init (#739)
* fix: CLI integration test for unmanaged pod with two containers (#738)
* chore: Upgrade Trivy from v0.19.2 to v0.20.0 (#736)
* feat(cli): Resolve report owners to be consistent with operator (#731)
* feat(crd): Remove the all category from cluster-scoped CRDs (#733)
* chore(ci): Fail fast by checking if test K8s cluster is ready before we run integration tests (#725)
* chore: Rename KubeHunterOutput to KubeHunterReportData (#730)
* docs: Describe ClusterVulnerabilityReport CR (#729)
* feat(cli): Install clustervulnerabilityreports CRD (#728)
* chore: Replace starboard get report with starboard report command (#727)
* chore(cli): Rename get subcommands to be consistent with scan subcommands (#726)
* docs: Add various design and explanation docs that we created so far (#724)
* feat(crds): Define ClusterVulnerabilityReport resource (#723)
* chore(deps): Bump sigs.k8s.io/yaml from 1.2.0 to 1.3.0 (#720)
* chore(deps): Bump sigs.k8s.io/controller-runtime from 0.10.0 to 0.10.1 (#721)
* chore(deps): Bump k8s.io/apiextensions-apiserver from 0.22.1 to 0.22.2 (#717)
* chore(deps): Bump github.com/valyala/quicktemplate from 1.6.3 to 1.7.0 (#715)
* chore(deps): Bump k8s.io/code-generator from 0.22.1 to 0.22.2 (#714)
* chore(deps): Bump k8s.io/cli-runtime from 0.22.1 to 0.22.2 (#712)
* docs: Prepare v0.12.0 (#710)
* Fri Jan 07 2022 kastl@b1-systems.de
- Update to version 0.12.0:
* release: Prepare v0.12.0 (#709)
* chore(deps): Bump up OLM from v0.17.0 to v0.18.3 (#705)
* docs: Update contributing guide (#704)
* feat(trivy): Add registry mirrors to Trivy config (#673)
* release: Prepare v0.12.0-rc4 (#703)
* fix: Handle nil pod in logsReader.GetLogsByJobAndContainerName method (#699)
* chore(deps): Bump sigs.k8s.io/controller-runtime from 0.9.6 to 0.10.0 (#702)
* chore(deps): Bump github.com/caarlos0/env/v6 from 6.6.2 to 6.7.1 (#701)
* release: Prepare v0.12.0-rc3 (#696)
* feat(conftest): Push back reconciliation key if there are no policies configured (#693)
* fix(conftest): Add Deployment to supported kinds (#695)
* fix(polaris): Add Deployment to supported kinds (#694)
* chore(kube-hunter): Bump up kube-hunter from v0.4.1 to v0.6.1 (#691)
* fix(kube-hunter): Change log level from warn to none (#690)
* release: Prepare v0.12.0-rc2 (#689)
* feat(helm): Require imageRef settings (#688)
* feat: Allow plugins to specify supported resource kinds (#683)
* feat: Exclude resources created for leader election from config audit (#687)
* release: Prepare v0.12.0-rc1 (#682)
* feat: Audit configuration of other K8s objects (#644)
* chore(deps): Bumpt up k8s/io/client-go from 0.22.0 to 0.22.1 (#681)
* chore(deps): Bump k8s.io/code-generator from 0.22.0 to 0.22.1 (#680)
* chore(deps): Bump k8s.io/api from 0.22.0 to 0.22.1 (#676)
* chore(deps): Bump github.com/onsi/gomega from 1.15.0 to 1.16.0 (#677)
* feat: Install ClusterConfigAuditReport CRD (#675)
* feat(helm): Configure Trivy settings (#674)
* chore(ci): Update dependencies (#672)
* docs: Update to new community operators repository (#671)
* docs: Release v0.11.0 (#663)
* Fri Jan 07 2022 kastl@b1-systems.de
- Update to version 0.11.0:
* release: Prepare v0.11.0 (#661)
* docs: Various updates (#660)
* release: Prepare v0.11.0-rc1 (#658)
* chore: Upgrade controller-runtime from v0.9.2 to v0.9.5 (#657)
* chore(trivy): Upgrade from v0.16.0 to v0.19.2 (#656)
* docs: Add sample HTML report (#650)
* docs: Update Starboard settings (#655)
* chore(polaris): upgrade polaris from v3.2 to v4.0 (#654)
* chore(polaris): Rename properties to configure resource requirements and limits (#653)
* feat(conftest): Allow configuration of resource request and limits (#648)
* chore(trivy): Rename properties to configure resource requirements and limits (#649)
* chore(ci): Upgrade KIND from v0.9.0 to v0.11.1 (#651)
* feat(polaris): Allow configuration of resource request and limits (#645)
* feat: Define interface for saving and finding ClusterConfigAuditReports (#643)
* test(trivy): Init method (#642)
* feat(trivy): Allow configuration of resource request and limits (#639)
* refactor: Rename CISKubeBenchOutput to CISKubeBenchReportData (#636)
* feat(cli): Run kube-bench on individual nodes (#549)
* chore: Bump up kube-bench from v0.5.0 to v0.6.3 (#630)
* docs: Manually delete crds installed with Helm (#629)
* chore: Bump up controller-runtime from v0.9.0 to v0.9.2 (#628)
* feat: Add scope to config audit check (#626)
* chore: Rename VulnerabilityScanResult to VulnerabilityReportData (#625)
* chore: Rename ConfigAuditResult to ConfigAuditReportData (#624)
* chore: Use the same receiver name for Trivy plugin (#623)
* refactor(trivy): Read config from starboard-trivy-config ConfigMap (#616)
* feat: Define ClusterConfigAuditReport (#622)
* chore: Update controller-runtime version from v0.7.2 to v0.9.0 (#620)
* refactor: Allow plugins to provide the default config (#611)
* refactor: Rename kube.CR_Manager to cmd.Installer (#610)
* fix(cisbenchmark): Skip Windows nodes (#608)
* refactor: Move Trivy config utilities to trivy package (#607)
* refactor: Add PluginContext to ParseVulnerabilityReportData callback (#606)
* feat(helm): Configure scanner pods tolerations and annotations (#605)
* refactor: Remove Aqua settings from generic starboard ConfigMap (#604)
* refactor: Remove config checkers settings from generic starboard ConfigMap (#603)
* refactor: Define PluginConfig object (#602)
* feat: Add PluginContext to vulnerability scan plugins (#600)
* feat(cli): Add pod template hash to vulnerability report (#599)
* refactor(cli): Use deterministic names for vulnerability scan jobs (#598)
* chore: Replace ORG_GITHUB_TOKEN secret with ORG_REPO_TOKEN (#597)
* fix: Flaky CLI Integration Test (#593)
* feat: Apply configurable tolerations to all kinds of scanners (#596)
* fix: Add updateTimestamp property to Open API spec of VulnerabilityReport (#591)
* feat: Add annotations to scan jobs spawned by Starboard (#588)
* docs: Explain how operator handles scaled workloads (#589)
* docs: Update CRD examples (#590)
* feat(trivy): Pass additional settings to Trivy client (#547)
* chore: Remove deprecated CLI commands (#558)
* feat: Add tolerations to vulnerability scan jobs (#586)
* docs: Prepare v0.10.3 (#583)
* Wed May 26 2021 Johannes Kastl <kastl@b1-systems.de>
- initial version of package starboard
/usr/bin/starboard /usr/bin/starboard-operator /usr/bin/starboard-scanner-aqua /usr/share/doc/packages/starboard /usr/share/doc/packages/starboard/README.md /usr/share/licenses/starboard /usr/share/licenses/starboard/LICENSE
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed Nov 13 00:41:02 2024