K Rail Versions Save

https://github.com/cruise-automation/k-rail/pull/128 implements support for all ingress types for the ingress_require_ingress_exemption policy

Kubernetes security tool for policy enforcement

https://github.com/cruise-automation/k-rail/pull/126 adds a policy to disallow usages of all NGINX snippet annotations, in response to NGINX Ingress Controller vulnerability CVE-2021-25742. The new policy is enabled and setup in report_only mode to allow operators to override based on individual organizational software development lifecycles.

Kubernetes security tool for policy enforcement

#120 Filter out Istio Virtual Services from Admission Requests correctly

Kubernetes security tool for policy enforcement

#119 Policy to require Istio VirtualService Gateways

Kubernetes security tool for policy enforcement

#118 Fix AppArmor violationText which was mistakenly reusing Empty Dir violationText

Kubernetes security tool for policy enforcement