Skip to content

v0.13.0

Latest
Latest
Compare
Choose a tag to compare
@gardener-robot-ci-1 gardener-robot-ci-1 released this 09 Dec 15:19
· 7 commits to main since this release
v0.13.0
4cc11f2

[gardener/diki]

⚠️ Breaking Changes

  • [USER] Argument minPodSecurityLevel for rule 254800 from the disa-k8s-stig ruleset for provider gardener was renamed to minPodSecurityStandardsProfile. by @georgibaltiev [#374]

✨ New Features

  • [USER] Rules can now specify severity level. by @georgibaltiev [#352]
  • [USER] Implementation for rule 2001 from the security-hardened-k8s ruleset for provider managedk8s. by @AleksandarSavchev [#375]
  • [USER] Implementation for rule 2000 from the security-hardened-k8s ruleset for provider managedk8s. by @AleksandarSavchev [#383]
  • [USER] Implementation for rule 2007 from the security-hardened-k8s ruleset for provider managedk8s. by @georgibaltiev [#389]
  • [USER] Implementation for rule 2002 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#360]
  • [USER] Implementation for rule 2002 from the security-hardened-k8s ruleset for provider managedk8s. by @georgibaltiev [#387]
  • [USER] Implementation for rule 2003 from the security-hardened-k8s ruleset for provider managedk8s. by @georgibaltiev [#391]
  • [USER] Implementation for rule 2006 from the security-hardened-k8s ruleset for provider managedk8s. by @AleksandarSavchev [#382]
  • [USER] Implementation for rule 2006 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#366]
  • [USER] Implementation for rule 2004 from the security-hardened-k8s ruleset for provider managedk8s. by @AleksandarSavchev [#376]
  • [USER] Implementation for rule 2000 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#362]
  • [USER] Severity level has been set to all current rules. by @georgibaltiev [#354]
  • [USER] Implementation for rule 2008 from the security-hardened-k8s ruleset for provider managedk8s. by @AleksandarSavchev [#371]
  • [USER] Implementation for rule 2007 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#374]
  • [USER] Implementation for rule 2005 from the security-hardened-k8s ruleset for provider managedk8s. by @AleksandarSavchev [#380]
  • [USER] Implementation for rule 1000 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#381]
  • [USER] Implementation for rule 2001 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#358]
  • [USER] Implementation for rule 2004 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#365]
  • [USER] Implementation for rule 2005 from the security-hardened-shoot-cluster ruleset for provider garden. by @georgibaltiev [#363]

🐛 Bug Fixes

  • [USER] A bug causing some rules to error when they encounter a Pod without an OwnerReference has been fixed. by @AleksandarSavchev [#399]

🏃 Others

  • [USER] Rule 242418 from DISA K8s STIG was revisited to fail when insecure tls ciphers are configured for the kube-apiserver. by @AleksandarSavchev [#390]
  • [OPERATOR] Pods created by diki will be terminated 300 seconds after start. by @dimityrmirchev [#364]

Docker Images

  • diki-ops: europe-docker.pkg.dev/gardener-project/releases/gardener/diki-ops:v0.13.0
  • diki: europe-docker.pkg.dev/gardener-project/releases/gardener/diki:v0.13.0

Contributors

dimityrmirchev, AleksandarSavchev, and georgibaltiev
Assets 8
Loading