Skip to content
This repository has been archived by the owner on Oct 30, 2024. It is now read-only.

Releases: Shopify/kubeaudit

kubeaudit-v0.22.2

21 Aug 19:47
92c3147
Compare
Choose a tag to compare
  • Added deprecation notice for Kubeaudit, planning for deprecation by October 2024.
  • Recommended transition to Kubebench for similar functionality.

Changelog

What's Changed

New Contributors

Full Changelog: v0.22.1...v0.22.2

kubeaudit-v0.22.1

29 Nov 15:28
76fe452
Compare
Choose a tag to compare

Changelog

kubeaudit-v0.22.0

30 Mar 15:12
538937d
Compare
Choose a tag to compare

What's Changed

Full Changelog: v0.21.0...v0.22.0

kubeaudit-v0.21.0

14 Nov 22:18
2bb1146
Compare
Choose a tag to compare

⚠️ Breaking Changes

✨ New Features

  • the Seccomp auditor has been updated to flag missing Seccomp profiles in securityContext instead of deprecated seccomp annotations. Thank you @Ser87ch, for your amazing contribution! 👏
  • Override added for the unconfined apparmor profile! Once again, thank you @Ser87ch! 😍

Changelog

kubeaudit-v0.20.0

06 Sep 21:25
918091a
Compare
Choose a tag to compare

⚠️ Breaking Changes

  • The Name field in the AuditorResult struct has been renamed to Auditor

✨ New Features

  • A new package was added, allowing for the use of the --format sarif flag to generate a SARIF report, which eases integration with other Static Code Analysis tooling, such as Github Code Scanning: https://github.com/Shopify/kubeaudit#audit-results

  • The AuditorResult has been extended with new fields: Auditor (used to be Name), Rule and FilePath

  • containerd paths have been added to the list of sensitive paths from Falco - thank you @Benzhaomin !!! 🎉

Changelog

kubeaudit-v0.19.0

08 Jul 08:10
dc6266c
Compare
Choose a tag to compare

⚠️ Breaking Changes

  • The -c shorthand flag has been repurposed from being the shorthand for --kubeconfig to being the shorthand for the new --context flag. This is consistent with kubectl. --kubeconfig does not have a replacement shorthand, please use the full flag.

✨ New Features

  • Kubeaudit now has a deprecatedapis auditor that checks for deprecated apis! 🎉
  • Kubeaudit now supports a new --no-color flag to produce output without color codes! 🎉
  • Kubeaudit is up to date dependency-wise 💊

thank you @jerr @genevieveluyt 👏

Changelog

  • 8624972 Fix --no-color documentation (#451)
  • dbeb9b5 Add --no-color flag (#449)
  • c1d5057 Bump github.com/stretchr/testify from 1.7.5 to 1.8.0 (#450)
  • fa172f2 ✨ Adds "deprecated apis" auditor (#428)
  • 7eaf685 add the --context option (#427)
  • 96a7b61 Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#447)
  • ffd993e Bump k8s.io/client-go from 0.24.1 to 0.24.2 (#443)
  • 1702945 Bump github.com/stretchr/testify from 1.7.2 to 1.7.5 (#448)

kubeaudit-v0.18.0

09 Jun 22:59
e70662b
Compare
Choose a tag to compare

Summary

Kubeaudit can now read from stdin by using the -f - flag and value. This allows for piping output from another command directly into kubeaudit! Thank you @raffis for adding this useful feature!

Changelog

kubeaudit-v0.17.1

09 Jun 22:18
0ce511d
Compare
Choose a tag to compare

Changelog

  • 0ce511d 🐛 Ignore groups not served by the cluster (#440)
  • 6a30cc0 Update k8s.io/api and friends to v0.24.1 (#438)
  • c0cfe7e Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 (#437)
  • 81a1ceb ✨ Use dynamic kubeclient (#433)
  • 29fbf35 🐛 bump KinD k8s node image version to 1.20 (#426)

kubeaudit-v0.17.0

13 May 23:52
7ebb9a6
Compare
Choose a tag to compare

Changelog

kubeaudit-v0.16.0

25 Nov 15:33
d3ec331
Compare
Choose a tag to compare

Summary

  • Introduces the --includegenerated flag which can be used to audit generated resources, which are normally ignored by kubeaudit (eg. pods generated by deployments) - Thank you @nobletrout for this contribution!
  • Adds support for initContainers. They will be audited the same as normal containers. - Thank you @danishprakash for this contribution!
  • Dependency updates

Changelog

d3ec331 Bump k8s.io/apiextensions-apiserver from 0.22.3 to 0.22.4 (#378)
55ef5fa Test IncludeGenerated (#381)
9f45e34 Bump k8s.io/client-go from 0.22.3 to 0.22.4 (#380)
b0c9c3c ✨ Adds ability to not filter CRDS, see ISSUE #373 (#374)
abd7f12 pkg/k8s: add support for initContainer (#376)

Docker images

  • docker pull shopify/kubeaudit:latest
  • docker pull shopify/kubeaudit:0.16.0
  • docker pull shopify/kubeaudit:v0.16