Releases: google/gke-policy-automation
Releases · google/gke-policy-automation
v1.4.0
v1.3.4
v1.3.3
FEATURES:
- Krew based installation #105
NEW POLICIES:
- GKE intranode visibility #196
- Control plane user basic authentication #197
- Control plane user certificate authentication #197
- Customer-Managed Encryption Keys for persistent disks #197
- Enable Security Posture dashboard #197
- Enable Workload vulnerability scanning #197
IMPROVEMENTS:
- Upgraded direct and indirect dependencies #195
- Adjusted all policies to GKE CIS version 1.4 benchmark #197
- Added Regal for linting Rego #194
BUG FIXES:
- Policy
node_pool_use_cosshould not fail on windows node pools #198
v1.3.2
v1.3.1
IMPROVEMENTS:
- Upgraded Go to 1.20
- Upgraded all direct and indirect dependencies
BUG FIXES:
- Upgraded CIRCL indirect dependency to v1.3.3 to fix security issues with error-handling
on rand readers (CVE-2023-1732)
v1.3.0
FEATURES:
- GKE Scalability checks based on metrics from kube-state-metrics #179
- Introduced external URI and recommendations to the policy model and outputs #131,
#141
IMPROVEMENTS:
- Introduced modularized inputs concept #127
- Added PromQL integration with a Cloud Monitoring and self hosted Prometheus for metrics ingestion #132,
#178 - Security Command Center output performance improvements #151
- Logs from logger can be stored in a files and in JSON format #155
- Adding -json flag to output results to stdout in JSON format #147
BUG FIXES:
- Fixed variable types in Terraform code #150
v1.2.2
v1.2.1
v1.2.0
FEATURES:
- Security Command Center output #100
IMPROVEMENTS:
- Cluster discovery triggered from CLI #92
- New console output, cluster evaluations are now policy oriented #90
- Tool can generate markdown documentation from policies #86
BUG FIXES:
- Cluster discovery skipped zonal clusters due to name pattern mismatch#91