v1.4.3

What's Changed

• refactor(operator): remove config empty check by @carlosrodfern in #1841

Full Changelog: v1.4.2...v1.4.3

v1.4.2

What's Changed

• chore: Update stable release to v1.4.1 by @DelusionalOptimist in #1845
• feat(operator): allow to set log level by @carlosrodfern in #1849
• feat(tests): Calculate coverage via codecov for k8s mode by @navin772 in #1847
• fix: untracked ns by @Aryan-sharma11 in #1853
• fix: Update relay clusterrole to watch pods by @anurag-rajawat in #1805
• enabling alert throttling by default by @Prateeknandle in #1852
• fix(policymatcher): skip future matching in case block/audit matches by @daemon1024 in #1855
• fix: BPFLSM enforcer fails to load on newer kernels (6.8+) by @Aryan-sharma11 in #1856
• chore: update slack link by @DelusionalOptimist in #1860
• fix(policyMatcher): handling relative path resource by joining it with cwd by @Prateeknandle in #1859
• fix(apparmor/host): streamline host profile generation with container template generation by @daemon1024 in #1861

Full Changelog: v1.4.1...v1.4.2

v1.4.1

What's Changed

• Update STABLE-RELEASE to v1.4.0 by @daemon1024 in #1827
• fix(core): handle bpf as an exception for setting node annotations by @tesla59 in #1786
• [skip ci] Update Helm Chart To v1.4.0 by @github-actions in #1828
• Fixes bug #1787 non-k8s: KubeArmor panics when not-enabled policy type is received by @itsCheithanya in #1789
• fix: crio tests in CI by @Aryan-sharma11 in #1835
• fix(core): ensure only cluster policy is updated on new ns by @carlosrodfern in #1837

New Contributors

• @itsCheithanya made their first contribution in #1789
• @carlosrodfern made their first contribution in #1837

Full Changelog: v1.4.0...v1.4.1

v1.4.0

What's Changed

• [skip ci] Update Helm Chart To v1.3.4 by @github-actions in #1733
• fix(core) : updating owner info for job/cronjob controller by @Prateeknandle in #1748
• fix(core) : owner information in logs by @Prateeknandle in #1753
• chore(CI): static builds of KubeArmor in release archives by @DelusionalOptimist in #1756
• chore(CI): publish KubeArmor tars to dockerhub by @DelusionalOptimist in #1764
• chore(deployment):update rbac rules for jobs/cronjobs for kubearmor clusterRole by @Prateeknandle in #1762
• fix(operator): fix tls rotation logic for controller by @rksharma95 in #1757
• doc(Security): Kubearmor security enhancement doc by @rksharma95 in #1778
• feat : Alert Throttling by @Prateeknandle in #1723
• fix(docs): Update KubeArmor VM/Bare-metal docs according to new conventions by @navin772 in #1777
• feat(security): Refine hostPaths/capabilities in deployments and remove init container by @daemon1024 in #1658
• fix(core):patch apparmor annotations for cronjobs and updating rbac rules by @Prateeknandle in #1768
• chore : remove kernel headers mount if btf found with initDeploy = true by @Aryan-sharma11 in #1785
• fix(snitch): use DirectoryOrCreate for apparmor mount in Snitch by @daemon1024 in #1788
• feat:Adding support for KubeArmorClusterPolicy by @Prateeknandle in #1772
• hotfix(controller): don't exit controller on reconciler failure for hsp and csp by @daemon1024 in #1799
• chore: workaround for login with PAT by @DelusionalOptimist in #1800
• fix(helm): quote configmap values by @tesla59 in #1795
• fix: use custom action for pushing charts by @DelusionalOptimist in #1802
• fix(logs): reset eventChan everytime KarmorLogStart() is called by @navin772 in #1798
• fix: pass PAT as env var for gh-cli by @DelusionalOptimist in #1804
• docs: updated the main diagram & updater script by @nyrahul in #1806
• fix(core):timeout when host & cluster security policies crds are not found by @Prateeknandle in #1803
• fix(apparmor): reenable profile after parsing to make whitelisties work by @daemon1024 in #1808
• fix: default posture logs for system generated permission denied events by @Aryan-sharma11 in #1809
• fix(operator): controller image updation issue by @rksharma95 in #1801
• remove kustomize binary from the repo by @kranurag7 in #1810
• fix: ksp test failure in latest CI by @Aryan-sharma11 in #1821
• Fix hyperlink in hardening guide by @SD-13 in #1752
• add multienforcer controller by @rksharma95 in #1335
• fix(helm): create release in charts repo stable release updates by @daemon1024 in #1826

New Contributors

• @navin772 made their first contribution in #1777
• @SD-13 made their first contribution in #1752

Full Changelog: v1.3.8...v1.4.0

v1.3.8

What's Changed

• chore(CI): automate marketplace release by @rksharma95 in #1718
• Update STABLE-RELEASE to v1.3.4 by @daemon1024 in #1732
• fix(CI): fix marketplace ci by @rksharma95 in #1734
• docs: updating kubearmor use-cases by @nyrahul in #1722
• fix(CI): fix marketplace helm chart publish job by @rksharma95 in #1737
• feat : try restarting ka service in case it fails by @Aryan-sharma11 in #1738
• fix: systemd directive RestartSec by @Aryan-sharma11 in #1740
• feat:added signed releases by @KrishAryan in #1739
• fix systemd release workflow on main by @kranurag7 in #1741
• use oidc flags with cosign by @kranurag7 in #1742
• bug: fix systemd release workflow by @kranurag7 in #1745

New Contributors

• @KrishAryan made their first contribution in #1739

Full Changelog: v1.3.4...v1.3.8

v1.3.4

What's Changed

• fix(ci): check for controller readiness after restart by @daemon1024 in #1726

Full Changelog: v1.3.3...v1.3.4

v1.3.3

What's Changed

• Update STABLE-RELEASE to v1.3.2 by @daemon1024 in #1690
• [skip ci] Update Helm Chart To v1.3.2 by @github-actions in #1691
• fix:Update Controller Makefile to include Helm CRD and update CRDs by @sratslla in #1694
• feat(core): add label/regex matching in non-k8s by @DelusionalOptimist in #1704
• fix(workflow):OSSF run analysis version bumped to v2.3.1 by @rootxrishabh in #1707
• fix(grpc): extend grpc maxrecvmsg size for cri handlers by @rksharma95 in #1709
• fix(enforcer): suppress permission denied alerts for any non bpflsm enforcer by @daemon1024 in #1708
• fix(CI): snyk/govuln failures by updating to go 1.21.9 and other dep udpates by @DelusionalOptimist in #1713
• Add objectfile for system_monitor in release packages by @Aryan-sharma11 in #1711
• refactor(chore): fix typo in group owner by @Ankurk99 in #1719
• feat(gRPC): add tls configurations to the operator and helm by @rksharma95 in #1695

Full Changelog: v1.3.2...v1.3.3

v1.3.2

What's Changed

• fix(core): fix panic in container IP detection by @DelusionalOptimist in #1677
• fix(bpflsm/alert): missing procname in proc alerts by @daemon1024 in #1679
• fix(core): filter watched nodes and pods server-side by @dqsully in #1676
• fix(operator): update kubearmor-scc to allow using custom seccomprofile on OpenShift by @rksharma95 in #1684
• chore(helm): use version tag for operator image by @rksharma95 in #1687
• fix(enforcer/bpflsm): panic during bpflsm cleanup by @daemon1024 in #1686
• fix(seccomp): Seccomp default to false and ARM related changes by @PrimalPimmy in #1681
• fix(snitch) : check Apparmor Fs & available lsms to set enforcer by @Prateeknandle in #1689
• fix(contribution): Update Kubernetes apt repository used in contribution guide by @AbdelrahmanElawady in #1685
• feat: Added column in ksp and hsp -owide by @sratslla in #1683

New Contributors

• @AbdelrahmanElawady made their first contribution in #1685

Full Changelog: v1.3.1...v1.3.2

v1.3.1

What's Changed

• Update ci-systemd-release.yml by @daemon1024 in #1672

Full Changelog: v1.3.0...v1.3.1

v1.2.1

What's Changed

• update stable version to 1.2.0 by @Shreyas220 in #1593
• [skip ci] Update Helm Chart To v1.2.0 by @github-actions in #1594
• Update imports by @rootxrishabh in #1595
• docs(URL): Slack Invite URL update in SECURITY.md and README.md file by @Aditya-150 in #1599
• (docs): Updated getting started guide for file visibility by @PrimalPimmy in #1604
• Duplicate imports removed by @rootxrishabh in #1602
• chore: update vagrant setup scripts + sync packages by @DelusionalOptimist in #1612
• Fix : Pods not being annotated with kubearmor-policy=enabled by Kubearmor controller by @Aryan-sharma11 in #1610
• fix(crd): add omitempty in spec for crds by @rajaSahil in #1547
• fix(monitor):handling cwd & tty for older kernel version by @Prateeknandle in #1608
• execute govulncheck in CI by @kranurag7 in #1585
• docs: AnyLog as adopter by @nyrahul in #1618
• feat: lenient apparmor profiles by @PrimalPimmy in #1583
• fix: No Source and resource telemetry by @Aryan-sharma11 in #1619

New Contributors

• @Aditya-150 made their first contribution in #1599

Full Changelog: v1.2.0...v1.2.1