Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

starboard-0.15.22-1.1 RPM for x86_64

From OpenSuSE Tumbleweed for x86_64

Name: starboard Distribution: openSUSE Tumbleweed
Version: 0.15.22 Vendor: openSUSE
Release: 1.1 Build date: Mon Sep 30 18:43:07 2024
Group: Unspecified Build host: reproducible
Size: 129526370 Source RPM: starboard-0.15.22-1.1.src.rpm
Packager: https://bugs.opensuse.org
Url: https://github.com/aquasecurity/starboard
Summary: Kubernetes-native security toolkit
Starboard integrates security tools into the Kubernetes environment, so that
users can find and view the risks that relate to different resources in a
Kubernetes-native way. Starboard provides custom resources definitions and a Go
module to work with a range of existing security scanners, as well as a
kubectl-compatible command, the Octant plugin, and the Lens extension that make
security reports available through familiar Kubernetes tools.

Provides

Requires

License

Apache-2.0

Changelog

* Mon Sep 30 2024 opensuse_buildservice@ojkastl.de
  - Update to version 0.15.22:
    * release: prepare v0.15.22 (#1400)
    * The vulnerabilities have been fixed by bumping the Go version
      and by updating the opa. (#1398)
* Tue Jul 16 2024 opensuse_buildservice@ojkastl.de
  - Update to version 0.15.21:
    * release: prepare v0.15.21 (#1395)
    * fix: resolved security vulnerabilities in starboard (#1394)
* Sun Mar 17 2024 opensuse_buildservice@ojkastl.de
  - Update to version 0.15.20:
    * fix: failure in goreleaser (#1390)
    * fix: goreleaser pipeline failure (#1389)
    * chore: remove cleanup action (#1388)
    * chore: remove release pipeline cache (#1387)
    * chore: remove release pipeline cache (#1386)
    * chore: remove release pipeline cache (#1385)
    * fix: release pipeline failure (#1384)
    * release: prepare v0.15.20 (#1383)
    * chore: add alpine based fips image (#1381)
    * chore: update go version to 1.21 (#1380)
    * chore: Add ubi9 images for starboard-operator (#1379)
* Sun Mar 17 2024 opensuse_buildservice@ojkastl.de
  - Update to version 0.15.19:
    * release: prepare v0.15.19 (#1377)
    * fix: Mark old revision configaudit report for deletion (#1376)
* Thu Dec 07 2023 kastl@b1-systems.de
  - Update to version 0.15.18:
    * release: prepare v0.15.18 (#1375)
    * Fix security vulnerabilities in starboard-operator:0.15.17
      (#1374)
* Thu Dec 07 2023 kastl@b1-systems.de
  - Update to version 0.15.17:
    * release: prepare-v0.15.17 (#1373)
* Thu Oct 19 2023 kastl@b1-systems.de
  - Update to version 0.15.16:
    * release: prepare v0.15.16 (#1371)
    * release: prepare v0.15.16-rc (#1370)
* Tue Sep 05 2023 kastl@b1-systems.de
  - Update to version 0.15.15:
    * release: prepare v0.15.15 (#1369)
    * release: prepare v0.15.14 (#1368)
    * chore: release fips enabled images (#1364)
    * opa version upgrade to latest (#1367)
    * fix: Fix crd names error for roles (#1365)
  - skipping non-existent release 0.15.14
* Fri Jun 16 2023 kastl@b1-systems.de
  - Update to version 0.15.13:
    * chore: bump go version release 1.19 (#1363)
    * release: prepare v0.15.13 (#1362)
    * chore: resolve libssl vulnerability (#1361)
    * bugfix: Support configauditing for rbac resource with capital
      letter name (#1356)
    * feat: Support scan latest revision for replicationController
      from DeploymentConfig (#1352)
* Mon Apr 24 2023 kastl@b1-systems.de
  - Update to version 0.15.12:
    * release: prepare v0.15.12 (#1343)
    * release: prepare v0.15.12-rc (#1340)
    * chore: update base image to alpine:3.17 (#1338)
    * chore: bump base image and golang.org/x/net (#1335)
    * chore(deps): bump k8s.io/klog/v2 from 2.70.1 to 2.90.1 (#1328)
    * release: prepare v0.15.11 (#1294)
* Wed Oct 19 2022 kastl@b1-systems.de
  - Update to version 0.15.11:
    * chore: vulnerability-CVE-2022-32149 (#1293)
    * chore: add team notification on vulnerabilities found (#1288)
    * chore: add team notification on vulnerabilities found (#1286)
* Fri Sep 30 2022 kastl@b1-systems.de
  - Update to version 0.15.10:
    * release: prepare v0.15.10 (#1279)
    * chore: disable aqua image scanning (#1282)
    * chore: upgrade alpine v3.16.2 (#1281)
    * chore: upgrade alpine v3.16.2 (#1280)
    * fix: vulnerabilities (#1278)
* Sun Sep 25 2022 kastl@b1-systems.de
  - Update to version 0.15.9:
    * release: prepare v0.15.9 (#1273)
    * Using latest tag everytime for ubi-minimal (#1269)
    * release: prepare v0.15.9-rc3 (#1266)
    * release: prepare v0.15.9-rc2 (#1265)
    * release: prepare v0.15.9-rc (#1264)
    * feat: k8s resource computability (#1259)
* Wed Sep 07 2022 kastl@b1-systems.de
  - Update to version 0.15.8:
    * release: prepare v0.15.8 (#1255)
    * chore(deps): bump k8s.io/code-generator from 0.24.1 to 0.24.3 (#1233)
    * chore(deps): bump k8s.io/client-go from 0.24.1 to 0.24.3 (#1231)
    * chore(deps): bump github.com/open-policy-agent/opa from 0.40.0 to 0.43.0 (#1235)
    * Updating license to correct location in ubi image (#1244)
* Wed Sep 07 2022 kastl@b1-systems.de
  - Update to version 0.15.7:
    * fix: fix goreleaser to include LICENSE (#1242)
    * release: prepare v0.15.7 (#1241)
    * chore(deps): bump kube-bench from v0.6.6 to v0.6.9 (#1240)
    * Adding existing starboard license in ubi image (#1238)
    * docs(operator): add what next for trivy Q&A (#1213)
    * docs: deprecation notice (#1211)
* Sat Jun 04 2022 kastl@b1-systems.de
  - Update to version 0.15.6:
    * release: prepare v0.15.6 (#1210)
* Wed Jun 01 2022 kastl@b1-systems.de
  - mitigate CVE-2022-28946 (bsc#1199760)
  - Update to version 0.15.5:
    * release: prepare v0.15.5 (#1209)
    * chore(deps): bump github.com/caarlos0/env/v6 from 6.9.2 to 6.9.3 (#1208)
    * chore(deps): bump goreleaser/goreleaser-action from 2 to 3 (#1198)
    * chore(deps): bump k8s.io/code-generator from 0.24.0 to 0.24.1 (#1206)
    * chore(deps): bump k8s.io/cli-runtime from 0.24.0 to 0.24.1 (#1203)
    * chore(deps): bump github.com/hashicorp/go-version from 1.4.0 to 1.5.0 (#1197)
    * Added Region support for ECR-Registry handling. (#1191)
    * chore(deps): bump github.com/google/go-containerregistry (#1196)
    * chore(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.1 (#1195)
    * chore(deps): bump github.com/caarlos0/env/v6 from 6.9.1 to 6.9.2 (#1194)
    * chore(deps): bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 (#1188)
    * chore: bump k8s.io to version 0.24.0 (#1193)
    * chore(deps): bump docker/setup-qemu-action from 1 to 2 (#1178)
    * chore(deps): bump docker/setup-buildx-action from 1 to 2 (#1177)
    * chore(deps): bump docker/login-action from 1 to 2 (#1176)
    * chore(deps): bump github.com/google/go-cmp from 0.5.7 to 0.5.8 (#1171)
    * chore(deps): bump github.com/open-policy-agent/opa from 0.39.0 to 0.40.0 (#1170)
    * feat(configaudit): only scan current revision of deployments (#1148)
    * feat(trivy): add mirror config in helm chart (#1159)
    * feat: remove 'all' category from vuln and configaudit CRDs (#1156)
    * chore(deps): bump k8s.io/cli-runtime from 0.23.5 to 0.23.6 (#1153)
    * chore(deps): bump k8s.io/client-go from 0.23.5 to 0.23.6 (#1151)
    * chore(deps): bump k8s.io/code-generator from 0.23.5 to 0.23.6 (#1150)
    * Modified Decode() to use SplitN rather than Split. This allows GCR auths to be split that contain multiple : characters. (#1126)
    * chore(deps): bump github.com/emirpasic/gods from 1.15.0 to 1.18.1 (#1141)
    * chore(deps): bump rajatjindal/krew-release-bot from 0.0.42 to 0.0.43 (#1139)
* Thu Apr 14 2022 kastl@b1-systems.de
  - Update to version 0.15.4:
    * chore: fix Go code formatting (#1137)
    * release: prepare v0.15.4 (#1136)
    * fix: GoReleaser manifest (#1135)
    * chore: build operator images based on UBI 8 Minimal (#1127)
    * chore(deps): bump github.com/emirpasic/gods from 1.12.0 to 1.15.0 (#1132)
    * chore(deps): bump codecov/codecov-action from 2 to 3 (#1128)
    * chore(deps): bump actions/setup-python from 3.1.0 to 3.1.2 (#1129)
    * chore(deps): bump actions/setup-go from 2 to 3 (#1130)
    * chore(ci): fix release snapshot workflow (#1124)
    * feat(trivy): configure --db-repository to get advisory database from OCI registry (#1064)
    * chore(ci): grant contents permission in docs publishing workflow (#1121)
* Thu Apr 14 2022 kastl@b1-systems.de
  - Update to version 0.15.3:
    * release: v0.15.3 (#1120)
    * chore(ci): set permissions granted to the GITHUB_TOKEN (#1119)
    * chore(ci): cancel any in-flight jobs for the same PR branch (#1116)
    * fix: critial is a typo (#1117)
    * release: prepare v0.15.2 (#1114)
* Thu Apr 14 2022 kastl@b1-systems.de
  - Update to version 0.15.2:
    * release: prepare v0.15.2
    * fix: limit the num of failure entries in compliance detail report (#1108)
    * docs(contributing): use conventional commits (#1094)
    * chore(deps): bump github.com/open-policy-agent/opa from 0.38.1 to 0.39.0 (#1111)
    * chore(deps): bump sigs.k8s.io/controller-runtime from 0.11.1 to 0.11.2 (#1110)
    * chore(deps): bump actions/setup-python from 3.0.0 to 3.1.0 (#1109)
* Mon Apr 04 2022 kastl@b1-systems.de
  - Update to version 0.15.1:
    * release: prepare v0.15.1 (#1107)
    * fix: revert CronJobs to batch/v1beta1 (#1105)
    * chore: add log context when nsa update fails (#1104)
    * fix: krew manifest (#1091)
* Fri Apr 01 2022 kastl@b1-systems.de
  - Update to version 0.15.0:
    * release: prepare v0.15.0 (#1089)
    * docs: add troubleshooting guide (#1082)
    * docs: revisit configuration auditing (#1083)
    * chore(deps): bump kube-hunter from v0.6.3 to v0.6.5 (#1088)
    * chore(deps): bump kube-bench from v0.6.5 to v0.6.6 (#1087)
    * docs(design): specify life cycle for ClusterVulnerabilityReport resources (#1017)
    * chore: add pr template (#1084)
    * docs: compliance reports support (#1079)
    * docs(tutorial): Writing Custom Configuration Audit Policies (#1075)
    * chore(deps): bump github.com/onsi/gomega from 1.18.1 to 1.19.0 (#1078)
    * chore: nsa spec data typo (#1077)
    * docs(olm): fix OperatorGroup to select all namespaces (#1074)
    * release: prepare v0.15.0-rc7 (#1073)
    * chore(deploy): configure operator to select all namespaces, except kube-system and starboard-system by default (#1072)
    * feat: exclude certain namespaces from scanning (#1071)
    * feat(vulnerabilityreports): use deterministic names for secrets associated with scan jobs (#1069)
    * refactor: VulnerabilityReportReconciler to WorkloadController (#1068)
    * chore: install the nsa ClusterComplianceReport resource separately (#1067)
    * docs: update installation guides for v0.15.0 (#1063)
    * release: prepare v0.15.0-rc6 (#1060)
    * release: prepare v0.15.0-rc5 (#1058)
    * release: prepare v0.15.0-rc4 (#1056)
    * release: prepare v0.15.0-rc3 (#1055)
    * chore(release): skip publishing to ECR (#1054)
    * release: prepare v0.15.0-rc2 (#1053)
    * fix(goreleaser): fix typo in container image name (#1052)
    * release: prepare v0.15.0-rc1 (#1051)
    * chore: change KSV038 kind type (#1050)
    * docs: update configuration auditing (#1040)
    * chore(deps): bump github.com/go-logr/logr from 1.2.2 to 1.2.3 (#1049)
    * chore(deps): bump k8s.io/klog/v2 from 2.30.0 to 2.60.1 (#1048)
    * chore(deps): bump k8s.io/code-generator from 0.23.4 to 0.23.5 (#1047)
    * chore(deps): bump k8s.io/cli-runtime from 0.23.4 to 0.23.5 (#1043)
    * chore(deps): bump k8s.io/api from 0.23.4 to 0.23.5 (#1044)
    * chore(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1 (#1046)
    * chore(deps): bump actions/cache from 2 to 3 (#1042)
    * feat: compliance support for cli (#1039)
    * feat: add resource quota and limit range support (#1035)
    * docs: add nsa 1.0 spec (#1033)
    * feat: use oci image spec annotations (#1037)
    * Feat/add compliance check default status (#1030)
    * chore(deps): bump helm/chart-testing-action from 2.2.0 to 2.2.1 (#1026)
    * chore(deps): bump github.com/open-policy-agent/opa from 0.38.0 to 0.38.1 (#1027)
    * feat(cli): use built-in scanner for configuration audits (#1018)
    * chore(deps): bump github.com/spf13/cobra from 1.3.0 to 1.4.0 (#1028)
    * test: update compliance reconcile tests (#1021)
    * refactor: use ttl check with date util (#1015)
    * fix: remove compliance specKind field (#1016)
    * fix(helm): grant permissions to get,list,watch ciskubebenchreports (#1013)
    * chore: update release checklist (#1014)
    * docs: design compliance report (#961)
    * fix: generate deploy/static/starboard.yaml (#1011)
    * feat: consolidate compliance and detail summary model (#1012)
    * feat(compliance): add severity to checks (#1009)
    * refactor: decouple policy pkg from starboard apis (#1010)
    * chore(deps): bump github.com/open-policy-agent/opa from 0.37.2 to 0.38.0 (#1006)
    * feat: support compliance reports (#1004)
    * chore(deps): bump trivy from v0.23.0 to v0.24.2 (#1008)
    * feat: enable trivy server with self-signed certificates (#1003)
    * chore(deps): bump actions/checkout from 2 to 3 (#1005)
    * feat: built-in OPA Rego policy-based configuration audit scanner (#971)
    * docs(design): Caching Scan Results by Image Reference (#740)
    * feat: allow config check to contain zero to many messages (#998)
    * fix(ci): use Go 1.17 in release snapshot workflow (#997)
    * chore: add script to generate deploy/static/starboard.yaml (#996)
    * refactor(itest): create or update configuration objects (#995)
    * chore(ci): release unversioned snapshot every night (#994)
    * refactor: parse severity from name (#993)
    * feat: update severity enum in config audit check (#992)
    * docs: update from 2021 to 2022 (#989)
    * chore(deps): bump golangci/golangci-lint-action from 2 to 3.1.0 (#988)
    * chore(deps): bump actions/setup-python from 2.3.2 to 3 (#987)
    * feat(aqua): add filesystem scan option (#986)
    * feat(aqua-enterprise): add support for filesystem scanning (#985)
    * feat: add option to run vulnerability scan jobs in workload namespace (#943)
    * chore(deps): bump sigs.k8s.io/controller-runtime from 0.11.0 to 0.11.1 (#979)
    * chore(deps): bump k8s.io/cli-runtime from 0.23.3 to 0.23.4 (#981)
    * chore(deps): bump k8s.io/apiextensions-apiserver from 0.23.3 to 0.23.4 (#983)
    * chore(deps): bump k8s.io/code-generator from 0.23.3 to 0.23.4 (#977)
    * chore(deps): bump k8s.io/client-go from 0.23.3 to 0.23.4 (#980)
    * chore(deps): upgrade OLM from v0.18.3 to v0.20.0 (#975)
    * chore(operator): streamline installation with kubectl (#972)
    * refactor: GetRelatedReplicasetName (#970)
    * refactor: rename ObjectToObjectMetadata to ObjectToObjectMeta (#969)
    * chore: bump batchv1beta1 to batchv1 (#968)
    * feat(trivy): configure timeout (#967)
    * fix: delete scan jobs if their pods have already been deleted and we cannot collect logs (#956)
    * feat(trivy): mount emptyDir volume on /tmp path (#965)
    * chore: add support to s390x arch (#960)
    * chore(deps): bump Conftest from v0.28.2 to v0.30.0 (#964)
    * chore(deps): bump Trivy from v0.22.0 to v0.23.0 (#963)
    * refactor: move plugin constants from generic starboard config (#962)
    * docs: integrate with ACR managed registry (#908)
    * chore: support ARM architecture (#958)
    * chore(deps): bump actions/setup-python from 2.3.1 to 2.3.2 (#951)
    * docs(design): schedule vulnerability scans in workload's namespace (#917)
    * docs(CONTRIBUTING.md): fix instructions to run integration tests (#947)
    * chore(deps): bump github.com/onsi/gomega from 1.18.0 to 1.18.1 (#945)
    * chore(deps): bump k8s.io/cli-runtime from 0.23.2 to 0.23.3 (#938)
    * chore(deps): bump k8s.io/apiextensions-apiserver from 0.23.2 to 0.23.3 (#937)
* Wed Jan 26 2022 Johannes Kastl <kastl@b1-systems.de>
  - BuildRequire go1.17
* Wed Jan 26 2022 kastl@b1-systems.de
  - Update to version 0.14.1:
    * release: prepare v0.14.1 (#932)
    * chore(deps): bump Trivy from v0.20.0 to v0.22.0 (#931)
    * fix: handle error when operator cannot start (#930)
    * chore(deps): bump controller-runtime from v0.10.0 to v0.11.0 (#927)
    * chore(deps): bump Go from 1.16 to 1.17 (#928)
    * chore(deps): bump github.com/onsi/gomega from 1.17.0 to 1.18.0 (#920)
    * feat: use trivy filesystem scanner (#872)
* Sun Jan 23 2022 kastl@b1-systems.de
  - Update to version 0.14.0:
    * release: prepare v0.14.0 (#910)
    * chore: scan images for vulnerabilities (#907)
    * release: prepare v0.14.0-rc2 (#906)
    * docs: revisit documentation pages for consistency (#905)
    * docs: separate commands from output in getting started guides (#750)
    * refactor: review and cleanup starboard config package (#904)
    * feat: allow configuring pod template labels attached to scan jobs (#902)
    * docs(design): update Scan Container Images with Trivy Filesystem Scanner (#900)
    * release: prepare v0.14.0-rc1 (#901)
    * docs(design): vulnerability rescan of K8s workloads based on report TTL (#863)
    * feat: vulnerability rescan of K8s workloads based on report TTL (#879)
    * docs(design): Scan Container Images with Trivy Filesystem Scanne (#830)
    * fix: trivy uses deprecated subcommand (#891)
    * refactor: pass client.Object instead of PodSpec to vulnerabilityreport.Plugin (#894)
    * chore(deps): bump github.com/google/go-containerregistry (#897)
    * chore(deps): bump helm/chart-testing-action from 2.1.0 to 2.2.0 (#895)
    * chore(deps): bump actions/setup-python from 2 to 2.3.1 (#896)
    * chore(deps): bump github.com/hashicorp/go-version from 1.3.0 to 1.4.0 (#898)
    * refactor: rename kube.Object to kube.ObjectRef (#890)
    * feat: allow scanning only current revision of deployment (#870)
    * feat: add TRIVY_NON_SSL config and environment variable (#854)
    * chore(ci): test Helm chart in the PR validation workflow (#829)
    * feat(helm): make .trivyignore file a configurable value (#885)
    * chore(deps): bump github.com/caarlos0/env/v6 from 6.8.0 to 6.9.1 (#881)
    * chore: describe release steps (#883)
    * chore(deps): bump github.com/spf13/cobra from 1.2.1 to 1.3.0 (#876)
    * fix: typo in GetLogsByJobAndContainerName error message (#869)
* Fri Jan 07 2022 kastl@b1-systems.de
  - Update to version 0.13.2:
    * release: prepare v0.13.2 (#862)
    * chore(ci): publish mkdocs and Helm chart from the specified ref (#861)
    * docs: review variables used in mkdocs (#860)
    * fix: parse registry credentials when the auth property is blank (#859)
    * test(cli): scanning images from private registries (#840)
    * chore(ci): release unversioned snapshot when integration tests pass (#846)
    * chore(ci) : setup golangci-lint action (#845)
    * chore(deps): upgrade base alpine container images from 3.14 to 3.15 (#844)
    * chore(deps): bump github.com/caarlos0/env/v6 from 6.7.2 to 6.8.0 (#843)
    * docs: release v0.13.1 (#839)
* Fri Jan 07 2022 kastl@b1-systems.de
  - Update to version 0.13.1:
    * release: prepare v0.13.1 (#838)
    * fix: scan images from private registries using imagePullSecrets (#837)
    * chore: test Helm chart before publishing it to Aqua repo (#819)
    * chore(deps): bump k8s.io/cli-runtime from 0.22.3 to 0.22.4 (#825)
    * chore(deps): bump sigs.k8s.io/controller-runtime from 0.10.2 to 0.10.3 (#820)
    * chore(deps): bump k8s.io/apiextensions-apiserver from 0.22.3 to 0.22.4 (#824)
    * chore(deps): bump k8s.io/client-go from 0.22.3 to 0.22.4 (#822)
    * docs: add high-level diagram (#816)
    * docs: update README.md (#815)
    * docs: update project overview (#814)
    * chore(deps): bump github.com/google/go-containerregistry (#812)
    * docs: update README.md (#811)
    * docs: update README.md (#809)
    * docs: fix helm command to install starboard with conftest policies (#807)
    * docs: release v0.13.0 (#806)
* Fri Jan 07 2022 kastl@b1-systems.de
  - Update to version 0.13.0:
    * release: prepare v0.13.0 (#805)
    * fix: list active ReplicaSets in the given namespace (#804)
    * docs: review and update docs (#803)
    * docs: update starboard settings (#802)
    * docs(operator): update getting started guide (#801)
    * docs(cli): update getting started guide (#800)
    * chore(deploy): align static YAMLs with Helm templates (#799)
    * chore(deps): bump github.com/onsi/gomega from 1.16.0 to 1.17.0 (#798)
    * chore(deploy): add recommended labels (#797)
    * chore(deploy): add service to expose Prometheus metrics (#796)
    * chore(helm): remove envSecret value (#795)
    * chore(deps): bump k8s.io/cli-runtime from 0.22.2 to 0.22.3 (#789)
    * chore(deps): bump k8s.io/apiextensions-apiserver from 0.22.2 to 0.22.3 (#788)
    * release: Prepare v0.13.0-rc2 (#786)
    * chore(deps): bump conftest from v0.25.0 to v0.28.2 (#785)
    * feat(conftest): assert that resource kinds are defined for policies (#784)
    * refactor: remove ObjectFromLabelsSet method (#783)
    * chore(reps): upgrade kube-bench from v0.6.3 to 0.6.5 (#782)
    * chore: use starboard-system namespace to install the operator (#779)
    * docs: update Conftest integration (#778)
    * docs(tutorial): manage access to security reports (#776)
    * docs: update installation with Helm (#775)
    * release: Prepare v0.13.0-rc1 (#774)
    * fix: cannot create vulnerability report because name is too long (#773)
    * refactor(operator): use builder to construct vulnerability scan jobs (#770)
    * feat(conftest): associate Rego policies with K8s resources (#752)
    * docs(design): Associating Rego Policies with Kubernetes Resources (#746)
    * refactor: use builder to construct vulnerability scan jobs (#768)
    * fix(trivy): add Linux nodeAffinity to scan job in ClientServer mode (#769)
    * test: encode objects as labels and annotations (#767)
    * fix: panic when image pull secret cannot be parsed (#764)
    * feat(cli): make get vulnerabilityreports cmd compatible with kubectl get cmd (#766)
    * feat: Explain VulnerabilityReport and ClusterVulnerabilityReport CRDs (#765)
    * docs: Integrated infrastructure scanners (#758)
    * chore(deps): Bump kube-hunter from v0.6.1 to v0.6.3 (#761)
    * chore(deps): Bump Polaris from v4.0 to v4.2 (#760)
    * chore(deps): Bump github.com/onsi/ginkgo from 1.16.4 to 1.16.5 (#755)
    * chore(deps): Bump github.com/caarlos0/env/v6 from 6.7.1 to 6.7.2 (#754)
    * fix: Resolve report owner for non workload objects (#753)
    * docs: Update design docs index (#745)
    * docs(design): Managing Access to Security Reports (#734)
    * chore(deps): Bump sigs.k8s.io/controller-runtime from 0.10.1 to 0.10.2 (#743)
    * chore(cli): Add info banner on init (#739)
    * fix: CLI integration test for unmanaged pod with two containers (#738)
    * chore: Upgrade Trivy from v0.19.2 to v0.20.0 (#736)
    * feat(cli): Resolve report owners to be consistent with operator (#731)
    * feat(crd): Remove the all category from cluster-scoped CRDs (#733)
    * chore(ci): Fail fast by checking if test K8s cluster is ready before we run integration tests (#725)
    * chore: Rename KubeHunterOutput to KubeHunterReportData (#730)
    * docs: Describe ClusterVulnerabilityReport CR (#729)
    * feat(cli): Install clustervulnerabilityreports CRD (#728)
    * chore: Replace starboard get report with starboard report command (#727)
    * chore(cli): Rename get subcommands to be consistent with scan subcommands (#726)
    * docs: Add various design and explanation docs that we created so far (#724)
    * feat(crds): Define ClusterVulnerabilityReport resource (#723)
    * chore(deps): Bump sigs.k8s.io/yaml from 1.2.0 to 1.3.0 (#720)
    * chore(deps): Bump sigs.k8s.io/controller-runtime from 0.10.0 to 0.10.1 (#721)
    * chore(deps): Bump k8s.io/apiextensions-apiserver from 0.22.1 to 0.22.2 (#717)
    * chore(deps): Bump github.com/valyala/quicktemplate from 1.6.3 to 1.7.0 (#715)
    * chore(deps): Bump k8s.io/code-generator from 0.22.1 to 0.22.2 (#714)
    * chore(deps): Bump k8s.io/cli-runtime from 0.22.1 to 0.22.2 (#712)
    * docs: Prepare v0.12.0 (#710)
* Fri Jan 07 2022 kastl@b1-systems.de
  - Update to version 0.12.0:
    * release: Prepare v0.12.0 (#709)
    * chore(deps): Bump up OLM from v0.17.0 to v0.18.3 (#705)
    * docs: Update contributing guide (#704)
    * feat(trivy): Add registry mirrors to Trivy config (#673)
    * release: Prepare v0.12.0-rc4 (#703)
    * fix: Handle nil pod in logsReader.GetLogsByJobAndContainerName method (#699)
    * chore(deps): Bump sigs.k8s.io/controller-runtime from 0.9.6 to 0.10.0 (#702)
    * chore(deps): Bump github.com/caarlos0/env/v6 from 6.6.2 to 6.7.1 (#701)
    * release: Prepare v0.12.0-rc3 (#696)
    * feat(conftest): Push back reconciliation key if there are no policies configured (#693)
    * fix(conftest): Add Deployment to supported kinds (#695)
    * fix(polaris): Add Deployment to supported kinds (#694)
    * chore(kube-hunter): Bump up kube-hunter from v0.4.1 to v0.6.1 (#691)
    * fix(kube-hunter): Change log level from warn to none (#690)
    * release: Prepare v0.12.0-rc2 (#689)
    * feat(helm): Require imageRef settings (#688)
    * feat: Allow plugins to specify supported resource kinds (#683)
    * feat: Exclude resources created for leader election from config audit (#687)
    * release: Prepare v0.12.0-rc1 (#682)
    * feat: Audit configuration of other K8s objects (#644)
    * chore(deps): Bumpt up k8s/io/client-go from 0.22.0 to 0.22.1 (#681)
    * chore(deps): Bump k8s.io/code-generator from 0.22.0 to 0.22.1 (#680)
    * chore(deps): Bump k8s.io/api from 0.22.0 to 0.22.1 (#676)
    * chore(deps): Bump github.com/onsi/gomega from 1.15.0 to 1.16.0 (#677)
    * feat: Install ClusterConfigAuditReport CRD (#675)
    * feat(helm): Configure Trivy settings (#674)
    * chore(ci): Update dependencies (#672)
    * docs: Update to new community operators repository (#671)
    * docs: Release v0.11.0 (#663)
* Fri Jan 07 2022 kastl@b1-systems.de
  - Update to version 0.11.0:
    * release: Prepare v0.11.0 (#661)
    * docs: Various updates (#660)
    * release: Prepare v0.11.0-rc1 (#658)
    * chore: Upgrade controller-runtime from v0.9.2 to v0.9.5 (#657)
    * chore(trivy): Upgrade from v0.16.0 to v0.19.2 (#656)
    * docs: Add sample HTML report (#650)
    * docs: Update Starboard settings (#655)
    * chore(polaris): upgrade polaris from v3.2 to v4.0 (#654)
    * chore(polaris): Rename properties to configure resource requirements and limits (#653)
    * feat(conftest): Allow configuration of resource request and limits (#648)
    * chore(trivy): Rename properties to configure resource requirements and limits (#649)
    * chore(ci): Upgrade KIND from v0.9.0 to v0.11.1 (#651)
    * feat(polaris): Allow configuration of resource request and limits (#645)
    * feat: Define interface for saving and finding ClusterConfigAuditReports (#643)
    * test(trivy): Init method (#642)
    * feat(trivy): Allow configuration of resource request and limits (#639)
    * refactor: Rename CISKubeBenchOutput to CISKubeBenchReportData (#636)
    * feat(cli): Run kube-bench on individual nodes  (#549)
    * chore: Bump up kube-bench from v0.5.0 to v0.6.3 (#630)
    * docs: Manually delete crds installed with Helm (#629)
    * chore: Bump up controller-runtime from v0.9.0 to v0.9.2 (#628)
    * feat: Add scope to config audit check (#626)
    * chore: Rename VulnerabilityScanResult to VulnerabilityReportData (#625)
    * chore: Rename ConfigAuditResult to ConfigAuditReportData (#624)
    * chore: Use the same receiver name for Trivy plugin (#623)
    * refactor(trivy): Read config from starboard-trivy-config ConfigMap (#616)
    * feat: Define ClusterConfigAuditReport (#622)
    * chore: Update controller-runtime version from v0.7.2 to v0.9.0 (#620)
    * refactor: Allow plugins to provide the default config (#611)
    * refactor: Rename kube.CR_Manager to cmd.Installer (#610)
    * fix(cisbenchmark): Skip Windows nodes (#608)
    * refactor: Move Trivy config utilities to trivy package (#607)
    * refactor: Add PluginContext to ParseVulnerabilityReportData callback (#606)
    * feat(helm): Configure scanner pods tolerations and annotations (#605)
    * refactor: Remove Aqua settings from generic starboard ConfigMap (#604)
    * refactor: Remove config checkers settings from generic starboard ConfigMap (#603)
    * refactor: Define PluginConfig object (#602)
    * feat: Add PluginContext to vulnerability scan plugins (#600)
    * feat(cli): Add pod template hash to vulnerability report (#599)
    * refactor(cli): Use deterministic names for vulnerability scan jobs (#598)
    * chore: Replace ORG_GITHUB_TOKEN secret with ORG_REPO_TOKEN (#597)
    * fix: Flaky CLI Integration Test (#593)
    * feat: Apply configurable tolerations to all kinds of scanners (#596)
    * fix: Add updateTimestamp property to Open API spec of VulnerabilityReport (#591)
    * feat: Add annotations to scan jobs spawned by Starboard (#588)
    * docs: Explain how operator handles scaled workloads (#589)
    * docs: Update CRD examples (#590)
    * feat(trivy): Pass additional settings to Trivy client (#547)
    * chore: Remove deprecated CLI commands (#558)
    * feat: Add tolerations to vulnerability scan jobs (#586)
    * docs: Prepare v0.10.3 (#583)
* Wed May 26 2021 Johannes Kastl <kastl@b1-systems.de>
  - initial version of package starboard

Files

/usr/bin/starboard
/usr/bin/starboard-operator
/usr/bin/starboard-scanner-aqua
/usr/share/doc/packages/starboard
/usr/share/doc/packages/starboard/README.md
/usr/share/licenses/starboard
/usr/share/licenses/starboard/LICENSE


Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Nov 15 01:09:04 2024