Kubescape is an E2E Kubernetes cluster security platform
Starting with Helm chart version 1.24.x, ApplicationProfiles are used for relevancy instead of filtered SBOMs, requiring new annotations. Upgrading from older versions will delete any existing ApplicationProfiles that lack the required WLID or InstanceID annotations (unless relevancy for vulnerability scanning capability is disabled). Additionally, please note that a workload restart will be required.
What's Changed
-
operator
- chore(deps): Bump golang.org/x/crypto from 0.27.0 to 0.31.0 by @dependabot in operator#274
- bump dependencies to fix vulnerabilities by @matthyx in operator#275
- fix registry scanning bug for empty repositories by @refaelm92 in operator#276
- fix: trigger ApplicationProfile scan (relevancy) whenever the ApplicationProfile is ready by @amirmalka in operator#277
- fix: scan only complete ApplicationProfiles by @amirmalka in operator#278
-
kubevuln
- bump vulnerable dependency by @matthyx in kubevuln#263
- add registry image count attribute by @refaelm92 in kubevuln#264
- fix: scan only complete ApplicationProfiles, fixed InstanceID and ImageId by @amirmalka in kubevuln#266
-
storage
- Bump depencencies by @matthyx in storage#159
- Cleanup ApplicationProfiles with missing annotations when relevancy is enabled by @amirmalka in storage#182
Full Changelog: kubescape-operator-1.24.1...kubescape-operator-1.24.2
Contributors
matthyx, dependabot, and 2 other contributors