From 1916bc113d9fc0f27c26e0ef0968c1583dcec1cd Mon Sep 17 00:00:00 2001
From: Sunil Singh <sunil.singh@suse.com>
Date: Thu, 21 Nov 2024 11:30:43 -0800
Subject: [PATCH] Adding v5.4.1 release notes and updating basics page to
 latest v5.4.1 release.

Signed-off-by: Sunil Singh <sunil.singh@suse.com>
---
 docs/01.basics/01.basics.md                   |  6 +--
 docs/14.releasenotes/01.5x/01.5x.md           | 51 ++++++++++++++++++
 .../version-5.4/01.basics/01.basics.md        |  6 +--
 .../14.releasenotes/01.5x/01.5x.md            | 52 +++++++++++++++++++
 4 files changed, 109 insertions(+), 6 deletions(-)

diff --git a/docs/01.basics/01.basics.md b/docs/01.basics/01.basics.md
index 746778f0..603b37c5 100644
--- a/docs/01.basics/01.basics.md
+++ b/docs/01.basics/01.basics.md
@@ -13,9 +13,9 @@ slug: /
 
 The images are on the NeuVector Docker Hub registry. Use the appropriate version tag for the manager, controller, enforcer, and leave the version as 'latest' for scanner and updater. For example:
 
-+ neuvector/manager:5.3.0
-+ neuvector/controller:5.3.0
-+ neuvector/enforcer:5.3.0
++ neuvector/manager:5.4.1
++ neuvector/controller:5.4.1
++ neuvector/enforcer:5.4.1
 + neuvector/scanner:latest
 + neuvector/updater:latest
 
diff --git a/docs/14.releasenotes/01.5x/01.5x.md b/docs/14.releasenotes/01.5x/01.5x.md
index 058900a4..14c6addd 100644
--- a/docs/14.releasenotes/01.5x/01.5x.md
+++ b/docs/14.releasenotes/01.5x/01.5x.md
@@ -11,8 +11,59 @@ slug: /releasenotes/5x
 To receive email notifications of new releases, please subscribe to this SUSE mailing list: https://lists.suse.com/mailman/listinfo/neuvector-updates
 :::
 
+#### 5.4.1
+
+##### New Features
+
+* **NVSHAS-8583**: Setting granular policy modes for rule sets, separate network policy mode and profile mode at per group level.
+* **NVSHAS-9440**: Support separate network mode and Process and File mode in CRD.
+* **NVSHAS-9369**: Add debug log category via helm deployment support for controller.
+* **NVSHAS-9040**: Improve syslog message when admission control rule is denied in monitor mode.
+
+##### Bug Fixes
+
+* **NVSHAS-9416**: [Scanner] activemq-all-5.8.0.redhat-60024.jar can NOT be detected with any vul (but previous scanner build can).
+* **NVSHAS-9447**: Controller/Scanner pods crashing - "Unsupported system Exit".
+* **NVSHAS-9278**: CVE-2024-41110 is found in the latest scanner image.
+* **NVSHAS-9467**: Custom group defined by the pod label does not propagate its profile data on the children containers.
+* **NVSHAS-9442**: Deployment issue on ArgoCD.
+* **NVSHAS-9436**: Possible CVE false negative against CVE-2024-7347.
+* **NVSHAS-9468**: Fix CVE-2020-26160 to replace jwt-go with jwt:v5.
+* **NVSHAS-9517**: Admission control is not consistent, getting incorrect results.
+* **NVSHAS-9532**: The image scan is completed but deployment is still not allowed.
+* **NVSHAS-9558**: JWT token expire reports http.StatusRequestTimeout 408.
+* **NVSHAS-9576**: Clear password field for registry data when user uses controller mode with Jenkins to scan.
+* **NVSHAS-9425**: Create nfq when container has vxlan.
+* **NVSHAS-9571**: [Registries] Filter for all scanned image does not work well.
+* **NVSHAS-9589**: Managed clusters disconnected - Version mismatch with primary cluster.
+* **NVSHAS-8824**: User fails to delete own groups, cannot create namespace-scoped groups.
+* **NVSHAS-9605**: Export group with invalid policy mode & process profile mode values is mistakenly allowed.
+* **NVSHAS-9608**: Scanner does not report any error when controller reports an error for huge scan results ~23MB.
+* **NVSHAS-9534**: Display error in admission controls.
+* **NVSHAS-9600**: Cannot disable controller debug.
+* **NVSHAS-9631**: Reduce some enforcer errors.
+* **NVSHAS-9645**: Pre-existing CRD processing fails.
+* **NVSHAS-9592**: No new scan despite new DB version.
+* **NVSHAS-9212**: Display alerting msg in GET(/v1/eula) if the neuvector-binding-secret role(binding) is incorrect.
+* **NVSHAS-9367**: Enhance error messages when registry fails to be connected.
+* **NVSHAS-9475**: Background grid print is not fully covering when menu is collapsed.
+* **NVSHAS-9485**: Incorrect message for 'Network Security Policy Mode' in UI.
+* **NVSHAS-9480**: NV UI deployed on Rancher downstream cluster throws HTTP/403 after Rancher logout.
+* **NVSHAS-9547**: Sorting is broken on the security risks --> vulnerabilities table.
+* **NVSHAS-9570**: [Vulnerabilities] Change the legend description for different statuses on assets.
+* **NVSHAS-9561**: Dashboard board overall security score should match the actual score.
+* **NVSHAS-9572**: [Vulnerabilities] Filtered data was kept no matter user refresh or re-login on page.
+* **NVSHAS-9597**: UI doesn't respond to any error when the controller returns 403 for POST(v1/group).
+* **NVSHAS-8682**: CRD webhook service needs to be moved from crd helm chart to application helm chart.
+
+##### Known issues
+
+* In the 2.8.3 chart release, we have moved a previously misallocated resource from crds to core. If you use both crds and core charts, you might see issues during upgrade if you deploy core first. To resolve this, upgrade the crds first and then core charts.
+
 #### 5.4
 
+##### Overview
+
 + **UI Improvements**: 
   + Display Rancher SSO users.
   + Manage JWT tokens.
diff --git a/versioned_docs/version-5.4/01.basics/01.basics.md b/versioned_docs/version-5.4/01.basics/01.basics.md
index 746778f0..603b37c5 100644
--- a/versioned_docs/version-5.4/01.basics/01.basics.md
+++ b/versioned_docs/version-5.4/01.basics/01.basics.md
@@ -13,9 +13,9 @@ slug: /
 
 The images are on the NeuVector Docker Hub registry. Use the appropriate version tag for the manager, controller, enforcer, and leave the version as 'latest' for scanner and updater. For example:
 
-+ neuvector/manager:5.3.0
-+ neuvector/controller:5.3.0
-+ neuvector/enforcer:5.3.0
++ neuvector/manager:5.4.1
++ neuvector/controller:5.4.1
++ neuvector/enforcer:5.4.1
 + neuvector/scanner:latest
 + neuvector/updater:latest
 
diff --git a/versioned_docs/version-5.4/14.releasenotes/01.5x/01.5x.md b/versioned_docs/version-5.4/14.releasenotes/01.5x/01.5x.md
index 39a21053..14c6addd 100644
--- a/versioned_docs/version-5.4/14.releasenotes/01.5x/01.5x.md
+++ b/versioned_docs/version-5.4/14.releasenotes/01.5x/01.5x.md
@@ -11,8 +11,59 @@ slug: /releasenotes/5x
 To receive email notifications of new releases, please subscribe to this SUSE mailing list: https://lists.suse.com/mailman/listinfo/neuvector-updates
 :::
 
+#### 5.4.1
+
+##### New Features
+
+* **NVSHAS-8583**: Setting granular policy modes for rule sets, separate network policy mode and profile mode at per group level.
+* **NVSHAS-9440**: Support separate network mode and Process and File mode in CRD.
+* **NVSHAS-9369**: Add debug log category via helm deployment support for controller.
+* **NVSHAS-9040**: Improve syslog message when admission control rule is denied in monitor mode.
+
+##### Bug Fixes
+
+* **NVSHAS-9416**: [Scanner] activemq-all-5.8.0.redhat-60024.jar can NOT be detected with any vul (but previous scanner build can).
+* **NVSHAS-9447**: Controller/Scanner pods crashing - "Unsupported system Exit".
+* **NVSHAS-9278**: CVE-2024-41110 is found in the latest scanner image.
+* **NVSHAS-9467**: Custom group defined by the pod label does not propagate its profile data on the children containers.
+* **NVSHAS-9442**: Deployment issue on ArgoCD.
+* **NVSHAS-9436**: Possible CVE false negative against CVE-2024-7347.
+* **NVSHAS-9468**: Fix CVE-2020-26160 to replace jwt-go with jwt:v5.
+* **NVSHAS-9517**: Admission control is not consistent, getting incorrect results.
+* **NVSHAS-9532**: The image scan is completed but deployment is still not allowed.
+* **NVSHAS-9558**: JWT token expire reports http.StatusRequestTimeout 408.
+* **NVSHAS-9576**: Clear password field for registry data when user uses controller mode with Jenkins to scan.
+* **NVSHAS-9425**: Create nfq when container has vxlan.
+* **NVSHAS-9571**: [Registries] Filter for all scanned image does not work well.
+* **NVSHAS-9589**: Managed clusters disconnected - Version mismatch with primary cluster.
+* **NVSHAS-8824**: User fails to delete own groups, cannot create namespace-scoped groups.
+* **NVSHAS-9605**: Export group with invalid policy mode & process profile mode values is mistakenly allowed.
+* **NVSHAS-9608**: Scanner does not report any error when controller reports an error for huge scan results ~23MB.
+* **NVSHAS-9534**: Display error in admission controls.
+* **NVSHAS-9600**: Cannot disable controller debug.
+* **NVSHAS-9631**: Reduce some enforcer errors.
+* **NVSHAS-9645**: Pre-existing CRD processing fails.
+* **NVSHAS-9592**: No new scan despite new DB version.
+* **NVSHAS-9212**: Display alerting msg in GET(/v1/eula) if the neuvector-binding-secret role(binding) is incorrect.
+* **NVSHAS-9367**: Enhance error messages when registry fails to be connected.
+* **NVSHAS-9475**: Background grid print is not fully covering when menu is collapsed.
+* **NVSHAS-9485**: Incorrect message for 'Network Security Policy Mode' in UI.
+* **NVSHAS-9480**: NV UI deployed on Rancher downstream cluster throws HTTP/403 after Rancher logout.
+* **NVSHAS-9547**: Sorting is broken on the security risks --> vulnerabilities table.
+* **NVSHAS-9570**: [Vulnerabilities] Change the legend description for different statuses on assets.
+* **NVSHAS-9561**: Dashboard board overall security score should match the actual score.
+* **NVSHAS-9572**: [Vulnerabilities] Filtered data was kept no matter user refresh or re-login on page.
+* **NVSHAS-9597**: UI doesn't respond to any error when the controller returns 403 for POST(v1/group).
+* **NVSHAS-8682**: CRD webhook service needs to be moved from crd helm chart to application helm chart.
+
+##### Known issues
+
+* In the 2.8.3 chart release, we have moved a previously misallocated resource from crds to core. If you use both crds and core charts, you might see issues during upgrade if you deploy core first. To resolve this, upgrade the crds first and then core charts.
+
 #### 5.4
 
+##### Overview
+
 + **UI Improvements**: 
   + Display Rancher SSO users.
   + Manage JWT tokens.
@@ -164,6 +215,7 @@ metadata:
 spec:
   leaseTransitions: 0
 EOF
+```
 
 #### 5.3.4 July 2024