diff --git a/README.md b/README.md index 148b91fc..6e5991bf 100644 --- a/README.md +++ b/README.md @@ -28,9 +28,9 @@ This repository includes the following charts; they can be deployed separately: | Chart | Description | Latest Chart Version | |-------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------| | [Server](server/) | Deploys the Console, Database, and Gateway components; optionally deploys Envoy component | 2022.4.23 | -| [Enforcer](enforcer/) | Deploys the Aqua Enforcer daemonset | 2022.4.18 | +| [Enforcer](enforcer/) | Deploys the Aqua Enforcer daemonset | 2022.4.19 | | [Scanner](scanner/) | Deploys the Aqua Scanner deployment | 2022.4.6 | -| [KubeEnforcer](kube-enforcer/) | Deploys Aqua KubeEnforcer | 2022.4.36 | +| [KubeEnforcer](kube-enforcer/) | Deploys Aqua KubeEnforcer | 2022.4.37 | | [Gateway](gateway) | Deploys the Aqua Standalone Gateway | 2022.4.12 | | [Tenant-Manager](tenant-manager/) | Deploys the Aqua Tenant Manager | 2022.4.0 | | [Cyber Center](cyber-center/) | Deploys Aqua CyberCenter offline for air-gap environment | 2022.4.2 | @@ -80,8 +80,8 @@ NAME CHART VERSION APP VERSION DESCRIPTION aqua-helm/codesec-agent 1.2.3 2022.4 A Helm chart for the Argon Broker Deployment aqua-helm/cloud-connector 2022.4.4 2022.4 A Helm chart for Aqua Cloud-Connector aqua-helm/cyber-center 2022.4.2 2022.4 A Helm chart for Aqua CyberCenter -aqua-helm/enforcer 2022.4.18 2022.4 A Helm chart for the Aqua Enforcer -aqua-helm/kube-enforcer 2022.4.36 2022.4 A Helm chart for the Aqua KubeEnforcer Starboard +aqua-helm/enforcer 2022.4.19 2022.4 A Helm chart for the Aqua Enforcer +aqua-helm/kube-enforcer 2022.4.37 2022.4 A Helm chart for the Aqua KubeEnforcer Starboard aqua-helm/gateway 2022.4.12 2022.4 A Helm chart for the Aqua Gateway aqua-helm/scanner 2022.4.6 2022.4 A Helm chart for the Aqua Scanner CLI component aqua-helm/server 2022.4.23 2022.4 A Helm chart for the Aqua Console components diff --git a/kube-enforcer/CHANGELOG.md b/kube-enforcer/CHANGELOG.md index 65d3e75f..3a4fcf47 100644 --- a/kube-enforcer/CHANGELOG.md +++ b/kube-enforcer/CHANGELOG.md @@ -3,6 +3,8 @@ All notable changes to this project will be documented in this file. ## 2022.4.37 ( Jan 3rd, 2024 ) * Updated enforcer chart version to 2022.4.19 +* Update startboard version to 0.15.19 +* Update kube-bench version to v0.7.0 ## 2022.4.36 ( Dec 14th, 2023 ) * Updated trivy-operator version to v0.16.1 diff --git a/kube-enforcer/Chart.yaml b/kube-enforcer/Chart.yaml index 5b87a9cc..dacd6a51 100644 --- a/kube-enforcer/Chart.yaml +++ b/kube-enforcer/Chart.yaml @@ -5,7 +5,7 @@ name: kube-enforcer version: "2022.4.37" dependencies: - name: enforcer - version: "2022.4.18" + version: "2022.4.19" repository: "https://helm.aquasec.com" condition: global.enforcer.enabled icon: https://avatars3.githubusercontent.com/u/12783832?s=200&v=4 diff --git a/kube-enforcer/templates/starboard-configmap.yaml b/kube-enforcer/templates/starboard-configmap.yaml index 3982c71c..8595108a 100644 --- a/kube-enforcer/templates/starboard-configmap.yaml +++ b/kube-enforcer/templates/starboard-configmap.yaml @@ -24,4 +24,5 @@ data: OPERATOR_BATCH_DELETE_LIMIT: "{{ .Values.starboard.OPERATOR_BATCH_DELETE_LIMIT }}" OPERATOR_BATCH_DELETE_DELAY: "{{ .Values.starboard.OPERATOR_BATCH_DELETE_DELAY }}" OPERATOR_CLUSTER_COMPLIANCE_ENABLED: "{{ .Values.starboard.OPERATOR_CLUSTER_COMPLIANCE_ENABLED }}" + OPERATOR_CONFIG_AUDIT_SCANNER_SCAN_ONLY_CURRENT_REVISIONS: "{{ .Values.starboard.OPERATOR_CONFIG_AUDIT_SCANNER_SCAN_ONLY_CURRENT_REVISIONS }}" {{- end }} \ No newline at end of file diff --git a/kube-enforcer/values.yaml b/kube-enforcer/values.yaml index dbef3146..5119b683 100644 --- a/kube-enforcer/values.yaml +++ b/kube-enforcer/values.yaml @@ -85,7 +85,7 @@ microEnforcerImage: # KubeBench Image kubebenchImage: repository: "aquasec/kube-bench" # Default aqua registry KubeBench repository name - tag: "v0.6.15" + tag: "v0.7.0" # Enable/Disable KB scanning on tainted nodes kubeBench: @@ -302,7 +302,7 @@ starboard: image: repositoryUriPrefix: "docker.io/aquasec" repository: "starboard-operator" - tag: "0.15.18" + tag: "0.15.19" pullPolicy: Always container_securityContext: @@ -326,6 +326,7 @@ starboard: OPERATOR_BATCH_DELETE_LIMIT: "10" OPERATOR_BATCH_DELETE_DELAY: "10s" OPERATOR_CLUSTER_COMPLIANCE_ENABLED: false + OPERATOR_CONFIG_AUDIT_SCANNER_SCAN_ONLY_CURRENT_REVISIONS: true ports: metricContainerPort: 8080