Polaris Versions Save

Validation of best practices in your Kubernetes clusters

7.4.0

1 year ago

Changelog

  • b75db7fc Bump golang.org/x/net from 0.6.0 to 0.7.0 (#922)
  • 501744a6 Skip https certificate verification (#920)
  • f531103f Update documentation from template (#926)
  • 6abfbb35 Update package-lock.json (#923)
  • d909dfd0 chore(ci): Upgrade Github CI/CD to non-deprecated actions (#933)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.3.2

1 year ago

Changelog

  • 9a678b46 update alpine (#918)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.3.1

1 year ago

Changelog

  • 498ccf22 Fix #908 by generating release name (#909)
  • bf065f9b Update dangerousCapabilities.yaml (#866)
  • 80c43347 update go modules (#917)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.3.0

1 year ago

Changelog

  • a1b63ac4 Fix #547 - add a check for topologySpreadConstraint (#879)
  • 71b0e002 Update documentation from template (#899)
  • 2d28ea55 sc/rd 71 add plg link (#896)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.2.1

1 year ago

Changelog

  • c2d1b1cc Bump alpine from 3.16 to 3.17 (#885)
  • 81755e32 Bump github.com/spf13/cobra from 1.6.0 to 1.6.1 (#870)
  • 531322c6 Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 (#869)
  • e3f3254f Managed by Terraform
  • 8bc1a4bc refactor: move from io/ioutil to io and os packages (#858)
  • 8af43636 update dependencies (#898)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.2.0

1 year ago

Changelog

  • 467d06f4 FWI-2719: Enable new RBAC / sensitive content / Pod exec checks, add hasPrefix and hasSuffix functions to the GO template, exempt system: name prefixes for RBAC checks, sensitive content checks ignore valueFrom, (#832)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.1.6

1 year ago

Changelog

  • 29102dea Build docker images using goreleaser and support arm64 (#845)
  • 587396a5 Bump k8s.io/api from 0.25.0 to 0.25.3 (#862)
  • 45be5cbb FWI-2912: Add logging to improve debugging of JSON Schema (#859)
  • b3d842a1 Fix CI tag filters and re-enable docs (#852)
  • 4091355e Managed by Terraform
  • 6ef87be5 update dependencies (#867)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.1.5

1 year ago

Changelog

  • 29102dea Build docker images using goreleaser and support arm64 (#845)
  • 7e099521 Define tag filters for all jobs in the workflow
  • 98d8646c Fix 7e099521
  • 21ca5ee6 Re-enable build/push of documentation

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.1.4

1 year ago

Changelog

  • 68e27571 fix packr (#851)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub

7.0.2

1 year ago

Changelog

  • be45519a Add target PodTemplate which exposes the full Pod (not only the spec) (#801)
  • f9e2603b Bump alpine from 3.16.0 to 3.16.1 (#810)
  • 7addced3 Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0 (#815)
  • 76c42c47 Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#813)
  • 41030320 Bump github.com/stretchr/testify from 1.7.1 to 1.8.0 (#786)
  • 65add73e Bump k8s.io/api from 0.24.1 to 0.24.3 (#808)
  • af0d548a Bump k8s.io/apimachinery from 0.24.1 to 0.24.3 (#807)
  • 3efa3b40 Bump k8s.io/client-go from 0.24.1 to 0.24.3 (#806)
  • 7e773504 Bump sigs.k8s.io/controller-runtime from 0.12.1 to 0.12.3 (#814)
  • e5b92362 FWI-2476: Add missingNetworkPolicy, automountServiceAccountToken, and linuxHardening checks (#816)
  • 20632227 FWI-2509: Add sensitiveContainerEnvVar and sensitiveConfigMapContent checks (#817)
  • 50d789fd Fix resourceKindMap.addResource() to not assume every Kind has an APIGroup (#805)
  • e3a6cb37 Fix namespace checking when validating additional schemas which are not namespaced (#822)
  • a0000e19 Suppress empty results when --only-show-failed-tests is passed (#811)
  • 25ab600e Update docs to reflect target: PodTemplate RE: PR #801 (#804)
  • c3b57bf6 target: container also populates .Polaris.PodSpec|PodTemplate + a new .Polaris.Container representing the currently checked container, GetPodTemplate serializes data to work around a DeepCopy bug with type int (#812)
  • ccaa384c expose Polaris.PodSpec for PodSpec targeted checks (#793)
  • b90f091b fix polaris cves (#824)
  • 652b65b3 fix: properly remove emojis in pretty format with no color (#765)

You can verify the signature of the checksums.txt file using cosign.

cosign verify-blob checksums.txt --signature=checksums.txt.sig  --key https://artifacts.fairwinds.com/cosign.pub