v0.3.0-beta.6

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103
• feat: Add support for mounting extra volumes and add webhook URL override capability by @ratschance in #109
• Create Deny-Service-Type-Nodeport.yaml by @epasham in #108
• fix: Don't create namespace on startup unless needed by @arsenetar in #110
• Add reinvocationPolicy parameter to jspolicy custom resource by @verdel in #107
• typo "come" --> "some" by @guettli in #70
• typo in word "persisted" by @guettli in #69
• add support for Pods/Deployment cutom labels by @max-rh in #65
• fix editUrl by @curx in #68
• Oob changes by @nascd in #112
• This policy assigns PSA labels to a new Namespace by @epasham in #111
• Added support for topologySpreadConstraints & PDB apiVersion for 1.26 by @ColonelBundy in #100
• Oob changes by @nascd in #115
• feat: add JS_POLICY_WEBHOOK_URL to webhook cert by @nascd in #119
• feat: support user-supplied annotations on service definition by @nascd in #120
• Add Dockerfile for building arm64 image by @bugbounce in #124
• added policy library and included sample policies by @epasham in #125

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103
• @ratschance made their first contribution in #109
• @epasham made their first contribution in #108
• @arsenetar made their first contribution in #110
• @verdel made their first contribution in #107
• @guettli made their first contribution in #70
• @max-rh made their first contribution in #65
• @curx made their first contribution in #68
• @nascd made their first contribution in #112
• @ColonelBundy made their first contribution in #100
• @bugbounce made their first contribution in #124

Full Changelog: v0.2.2...v0.3.0-beta.6

v0.3.0-beta.5

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103
• feat: Add support for mounting extra volumes and add webhook URL override capability by @ratschance in #109
• Create Deny-Service-Type-Nodeport.yaml by @epasham in #108
• fix: Don't create namespace on startup unless needed by @arsenetar in #110
• Add reinvocationPolicy parameter to jspolicy custom resource by @verdel in #107
• typo "come" --> "some" by @guettli in #70
• typo in word "persisted" by @guettli in #69
• add support for Pods/Deployment cutom labels by @max-rh in #65
• fix editUrl by @curx in #68
• Oob changes by @nascd in #112
• This policy assigns PSA labels to a new Namespace by @epasham in #111
• Added support for topologySpreadConstraints & PDB apiVersion for 1.26 by @ColonelBundy in #100
• Oob changes by @nascd in #115
• feat: add JS_POLICY_WEBHOOK_URL to webhook cert by @nascd in #119
• feat: support user-supplied annotations on service definition by @nascd in #120

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103
• @ratschance made their first contribution in #109
• @epasham made their first contribution in #108
• @arsenetar made their first contribution in #110
• @verdel made their first contribution in #107
• @guettli made their first contribution in #70
• @max-rh made their first contribution in #65
• @curx made their first contribution in #68
• @nascd made their first contribution in #112
• @ColonelBundy made their first contribution in #100

Full Changelog: v0.2.2...v0.3.0-beta.5

v0.3.0-beta.4

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103
• feat: Add support for mounting extra volumes and add webhook URL override capability by @ratschance in #109
• Create Deny-Service-Type-Nodeport.yaml by @epasham in #108
• fix: Don't create namespace on startup unless needed by @arsenetar in #110
• Add reinvocationPolicy parameter to jspolicy custom resource by @verdel in #107
• typo "come" --> "some" by @guettli in #70
• typo in word "persisted" by @guettli in #69
• add support for Pods/Deployment cutom labels by @max-rh in #65
• fix editUrl by @curx in #68
• Oob changes by @nascd in #112
• This policy assigns PSA labels to a new Namespace by @epasham in #111
• Added support for topologySpreadConstraints & PDB apiVersion for 1.26 by @ColonelBundy in #100
• Oob changes by @nascd in #115

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103
• @ratschance made their first contribution in #109
• @epasham made their first contribution in #108
• @arsenetar made their first contribution in #110
• @verdel made their first contribution in #107
• @guettli made their first contribution in #70
• @max-rh made their first contribution in #65
• @curx made their first contribution in #68
• @nascd made their first contribution in #112
• @ColonelBundy made their first contribution in #100

Full Changelog: v0.2.2...v0.3.0-beta.4

v0.3.0-beta.3

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103
• feat: Add support for mounting extra volumes and add webhook URL override capability by @ratschance in #109
• Create Deny-Service-Type-Nodeport.yaml by @epasham in #108
• fix: Don't create namespace on startup unless needed by @arsenetar in #110
• Add reinvocationPolicy parameter to jspolicy custom resource by @verdel in #107
• typo "come" --> "some" by @guettli in #70
• typo in word "persisted" by @guettli in #69
• add support for Pods/Deployment cutom labels by @max-rh in #65
• fix editUrl by @curx in #68
• Oob changes by @nascd in #112
• This policy assigns PSA labels to a new Namespace by @epasham in #111
• Added support for topologySpreadConstraints & PDB apiVersion for 1.26 by @ColonelBundy in #100

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103
• @ratschance made their first contribution in #109
• @epasham made their first contribution in #108
• @arsenetar made their first contribution in #110
• @verdel made their first contribution in #107
• @guettli made their first contribution in #70
• @max-rh made their first contribution in #65
• @curx made their first contribution in #68
• @nascd made their first contribution in #112
• @ColonelBundy made their first contribution in #100

Full Changelog: v0.2.2...v0.3.0-beta.3

v0.3.0-beta.2

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103
• feat: Add support for mounting extra volumes and add webhook URL override capability by @ratschance in #109
• Create Deny-Service-Type-Nodeport.yaml by @epasham in #108
• fix: Don't create namespace on startup unless needed by @arsenetar in #110
• Add reinvocationPolicy parameter to jspolicy custom resource by @verdel in #107
• typo "come" --> "some" by @guettli in #70
• typo in word "persisted" by @guettli in #69
• add support for Pods/Deployment cutom labels by @max-rh in #65
• fix editUrl by @curx in #68

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103
• @ratschance made their first contribution in #109
• @epasham made their first contribution in #108
• @arsenetar made their first contribution in #110
• @verdel made their first contribution in #107
• @guettli made their first contribution in #70
• @max-rh made their first contribution in #65
• @curx made their first contribution in #68

Full Changelog: v0.2.2...v0.3.0-beta.2

v0.3.0-beta.1

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103
• feat: Add support for mounting extra volumes and add webhook URL override capability by @ratschance in #109

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103
• @ratschance made their first contribution in #109

Full Changelog: v0.2.2...v0.3.0-beta.1

v0.3.0-beta.0

What's Changed

• Updating documentation on the crds by @billabongrob in #91
• refactor(pdp): change apiVersion to policy/v1 by @ayeks in #99
• fix: editURL after branch migration to main by @hrittikhere in #103

New Contributors

• @billabongrob made their first contribution in #91
• @ayeks made their first contribution in #99
• @hrittikhere made their first contribution in #103

Full Changelog: v0.2.2...v0.3.0-beta.0

v0.2.2

What's Changed

• Add priority class value by @mishaprokop4ik in #86

New Contributors

• @mishaprokop4ik made their first contribution in #86

Full Changelog: v0.2.1...v0.2.2

v0.2.1

Changes

• Add PDB, Tolerations, affinity and NodeSelector to the helm chart (thanks @MaxRink )

v0.2.0

!!! Breaking !!!

Make sure you reapply the jspolicy crds via the following command before upgrading:

kubectl apply -f https://raw.githubusercontent.com/loft-sh/jspolicy/5211a03e9258d2f9917da3f4511af3af77fe441a/chart/crds/crds.yaml

Changes

• Decreased jsPolicy image size
• jsPolicy is now running as non root
• jsPolicy can now bundle multiple policies in parallel
• jsPolicy now applies changes to webhook configurations rather than overwriting them
• jsPolicy now supports PolicyReport and ClusterPolicyReport. PolicyReport and ClusterPolicyReport are CRDs created by the Kubernetes Policy WG (https://github.com/kubernetes-sigs/wg-policy-prototypes). These CRDs will be created besides the existing JsPolicyViolations CRD. jsPolicy can now creates one PolicyReport per Namespace for all JsPolices and one ClusterPolicyReport for all Cluster scoped violations. (thanks @fjogeleit) This makes it possible to use JsPolicy together with Policy Reporter and creates observability capabilities like integrations in Prometheus, Grafana Loki or the standalone Policy Reporter UI.
• New imagePullSecrets in the jsPolicy chart to define custom image pull secrets (thanks @infa-ddeore)
• Refactored jsPolicy controller to use conditions
• Fixed an issue where jsPolicy would end up in a retry loop on AKS clusters
• Changed health probe port from 80 to 9080
• Updated k8s dependencies to v1.23.0
• Updated v8 engine to 9.6.180.12