Releases: CrowdStrike/falcon-operator
Releases · CrowdStrike/falcon-operator
v0.9.1
What's Changed
- fix: sensor resource handling by @redhatrises in #455
Full Changelog: v0.9.0...v0.9.1
Contributors
redhatrises
Assets 3
v0.9.0
What's Changed
- Bump version by @redhatrises in #395
- feat: add proxy support by @redhatrises in #397
- feat: update to golang 1.19 by @redhatrises in #399
- makefile: update to the latest operator-sdk and kubebuilder versions by @redhatrises in #398
- feat: update config to SDK version 1.30 by @redhatrises in #400
- fix: update main.go to follow golang dir standards structure by @redhatrises in #401
- fix: update api dir for golang standards structure by @redhatrises in #402
- feat: start to use internal/controller and dedup some Kinds by @redhatrises in #403
- feat: add admission controller scaffolding by @redhatrises in #404
- fix: FalconAdmission boilerplate fixes by @redhatrises in #405
- fix: consistently use falconv1alpha1 for falcon v1alpha1 imports by @redhatrises in #406
- feat: enable MaxSurge in DS by @redhatrises in #407
- build(deps): bump helm/kind-action from 1.7.0 to 1.8.0 by @dependabot in #408
- refactor: code re-user for certs, pods ready check, ImageRefresher, etc. by @redhatrises in #413
- feat: Add initial scaffolding for helm chart source by @redhatrises in #415
- build(deps): bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 by @dependabot in #414
- feat: add GH Action to error when autogenerated docs are changed manually by @redhatrises in #417
- feat: Generate docs from templates by @redhatrises in #416
- feat: add linting to Makefile by @redhatrises in #418
- feat: run doc tests from makefile by @redhatrises in #419
- build(deps): bump docker/setup-qemu-action from 2 to 3 by @dependabot in #425
- build(deps): bump docker/build-push-action from 4 to 5 by @dependabot in #424
- build(deps): bump actions/checkout from 3 to 4 by @dependabot in #423
- build(deps): bump docker/login-action from 2 to 3 by @dependabot in #422
- build(deps): bump docker/setup-buildx-action from 2 to 3 by @dependabot in #421
- feat: get args from env for OLM config by @redhatrises in #426
- fix: config sample fixes by @redhatrises in #428
- feat: add admission controller RBAC config by @redhatrises in #429
- feat: update service asset to pass service name by @redhatrises in #430
- feat: add common reconciliation functions to cut down on code duplication by @redhatrises in #431
- fix: various scaffolding fixes by @redhatrises in #432
- feat: support admission controller registry by @redhatrises in #433
- feat: add Sidecar controller test by @redhatrises in #435
- build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 by @dependabot in #436
- feat: add sidecar e2e test run by @redhatrises in #437
- fix: node sensor tolerations are stuck in constant update by @redhatrises in #438
- feat: update proxy docs to provide link and examples by @redhatrises in #439
- feat: add admission controller deployment by @redhatrises in #434
- feat: Update kustomize scaffolding for admission controller settings by @redhatrises in #441
- feat: add admission controller reconciler by @redhatrises in #442
- feat: enable FIPS-capable container builds by @redhatrises in #443
- fix: ensure operator management config for non-OpenShift distros by @redhatrises in #444
- feat: Add admission controller test suite by @redhatrises in #440
- fix: update operator and image version status when changed by @redhatrises in #445
- build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.3 by @dependabot in #446
- feat: enable gke autopilot support by @redhatrises in #410
- feat: add gke autopilot docs by @redhatrises in #448
- fix: use GH alert formatting by @redhatrises in #449
- build(deps): bump github.com/docker/docker from 23.0.3+incompatible to 24.0.7+incompatible by @dependabot in #450
- feat: add Admission Controller docs by @redhatrises in #427
- feat: add resources to initContainer and cleanup by @redhatrises in #451
- feat: update readme with falconadmission resource by @redhatrises in #452
- feat: update falconadmission resource by @redhatrises in #453
- feat: update docs and add node version locking by @redhatrises in #454
Full Changelog: v0.8.1...v0.9.0
Contributors
redhatrises and dependabot
Assets 3
v0.8.1
What's Changed
- bump main to next version by @redhatrises in #328
- Adding documentation for node.backend by @jsullivan-CS in #330
- Explicitly excluding kube-system from secret creation by @jsullivan-CS in #334
- Do not deploy status: subresources outside OLM by @isimluk in #323
- build(deps): bump helm/kind-action from 1.4.0 to 1.5.0 by @dependabot in #329
- fix: exclude gosec rule G307 as it has been removed in the upstream branch by @redhatrises in #338
- update pod topology and replica count by @rbojja-cs in #339
- build(deps): bump golang.org/x/net from 0.1.0 to 0.7.0 by @dependabot in #336
- feat: Enable multi-arch operator build by @redhatrises in #341
- WIP: Log the falcon node sensor image uri selected to be used by @isimluk in #241
- Fix Falcon node sensor spec typo by @utpk in #342
- fix: kustomize format operator non-olm deploy yaml by @redhatrises in #349
- feat: Use kustomize to generate non-olm package manifest by @redhatrises in #350
- fix: Dockerfile cross compile updates and Makefile updates by @redhatrises in #348
- fix: re-organize go workflows by @redhatrises in #351
- fix: provide more test coverage in node assets by @redhatrises in #352
- Maint-0.7 cherry pick by @redhatrises in #354
- feat: add docker release build by @redhatrises in #353
- feat: add labels, security, and arch affinity to kustomize components by @redhatrises in #343
- feat: add support for nodeAffinity in node sensor by @redhatrises in #356
- fix: cluster role and SCC should not be reconciled by @redhatrises in #355
- build(deps): bump actions/setup-go from 3 to 4 by @dependabot in #357
- fix: update CSV contact info by @redhatrises in #361
- fix: use released manifests for non-olm deployments by @redhatrises in #360
- feat: automate releases by @redhatrises in #362
- node: updating init containers for node daemonset and node cleanup da… by @jsullivan-CS in #344
- build(deps): bump github.com/docker/docker from 20.10.21+incompatible to 20.10.24+incompatible by @dependabot in #358
- fix: fix failing deployment tests by @redhatrises in #363
- fix: reconciliation loop should not run forever by @redhatrises in #359
- fix: update tags for release automation by @redhatrises in #365
- fix: disable seccompProfile until broadly supported and enable multi-arch affinity for controller-manager by @redhatrises in #366
- fix: update metadata to use release version by @redhatrises in #367
- fix: fix Makefile help output for 2 targets by @redhatrises in #368
- feat: make developer guide more robust by @redhatrises in #369
- Documentation updates by @redhatrises in #288
- docs: resource docs updates by @redhatrises in #370
- fix: update indirect runc dependency to version 1.1.5 by @redhatrises in #372
- fix: Makefile kustomize target by @redhatrises in #371
- Update README.md by @marcos-borges in #374
- fix: update runc go.mod indirect dependency by @redhatrises in #375
- fix: ensure custom non-API Falcon CID can be used by @redhatrises in #377
- fix: sensor version was not working correctly by @redhatrises in #376
- feat: create generic kubernetes install by @redhatrises in #373
- fix: various fixes and certification prep by @redhatrises in #378
- cleanup: create a common label function by @redhatrises in #379
- fix: various fixes in prep for future changes by @redhatrises in #380
- docs: doc updates by @redhatrises in #381
- fix: update CSV description by @redhatrises in #382
- docs: update redhat deployment doc and images by @redhatrises in #383
- fix: sidecar deployment should have a service account specified by @redhatrises in #386
- build(deps): bump helm/kind-action from 1.5.0 to 1.7.0 by @dependabot in #387
- fix: update docs for new release by @redhatrises in #388
- fix: delay CS registry API check for falconcontainer by @redhatrises in #389
- maint: update changelog by @redhatrises in #392
- maint: go mod tidy by @redhatrises in #390
- feat: standardize labels across controllers by @redhatrises in #391
- build(deps): bump github.com/docker/docker from 23.0.2+incompatible to 23.0.3+incompatible by @dependabot in #393
- build(deps): bump github.com/sigstore/rekor from 1.1.0 to 1.2.0 by @dependabot in #394
New Contributors
- @rbojja-cs made their first contribution in #339
- @utpk made their first contribution in #342
- @marcos-borges made their first contribution in #374
Full Changelog: v0.7.3...v0.8.1
Contributors
isimluk, redhatrises, and 5 other contributors
Assets 3
v0.7.3
What's Changed
- Workload-Identity doc- fixing values and typo by @falcon-pioupiou in #317
- update properties in the readme for Node and Container by @falcon-pioupiou in #322
- Update FalconContainer All options with default falcon values by @falcon-pioupiou in #321
- adding default trace value in the yaml by @falcon-pioupiou in #320
- remove falconctlOpts to use default properties by @falcon-pioupiou in #319
- Adding backend support in Node/DaemonSet by @jsullivan-CS in #324
- Bumping version to 0.7.1 by @jsullivan-CS in #326
Full Changelog: v0.7.0...v0.7.3
Contributors
falcon-pioupiou and jsullivan-CS
Assets 3
v0.7.2
What's Changed
- fix: target correct manifests and image by @jsullivan-CS in #345
- Update maint-0.7 by @jsullivan-CS in #346
Full Changelog: v0.7.1...v0.7.2
Contributors
jsullivan-CS
Assets 3
v0.7.1
What's Changed
- Workload-Identity doc- fixing values and typo by @falcon-pioupiou in #317
- update properties in the readme for Node and Container by @falcon-pioupiou in #322
- Update FalconContainer All options with default falcon values by @falcon-pioupiou in #321
- adding default trace value in the yaml by @falcon-pioupiou in #320
- remove falconctlOpts to use default properties by @falcon-pioupiou in #319
- Adding backend support in Node/DaemonSet by @jsullivan-CS in #324
- Pull in 0.7 fixes and backend attribute by @jsullivan-CS in #325
- M7 by @jsullivan-CS in #327
Full Changelog: v0.7.0...v0.7.1
Contributors
falcon-pioupiou and jsullivan-CS
Assets 3
v0.7.0
What's Changed
- Make sure node controller has appropriate access to namespaces by @redhatrises in #207
- Remove controller-manager uid and gid settings by @redhatrises in #198
- Docs: Node: Improve troubleshooting steps by @isimluk in #205
- Addressing inability to upgrade the operator by @isimluk in #209
- Update faq.md by @isimluk in #210
- Do not log pod not found, when we are about to delete it by @isimluk in #211
- Refactoring of Falcon API errors handling by @isimluk in #212
- Add version flag and print version in logs by @redhatrises in #206
- Set WATCH_NAMESPACE to cluster scope and fail on MulitNamespace InstallMode by @redhatrises in #213
- Revert "Set WATCH_NAMESPACE to cluster scope and fail on MulitNamespace InstallMode" by @isimluk in #220
- typo fix by @isimluk in #218
- Frontdoor: Documentation for GKE node upgrade process by @vasiminamdar in #214
- Bump version on the main branch by @isimluk in #222
- Fix typo in GCP service name by @redhatrises in #226
- Chores: Update gofalcon dependency (to improve readability of some of the errors) by @isimluk in #223
- Initial minimalistic cloudformation to deploy falcon-operator on Quickstart EKS by @isimluk in #227
- Chores: CI: increase the logging detail in golangci-lint action by @isimluk in #232
- WIP: Node: Allow use of custom pull secret for deployment from custom registry by @isimluk in #231
- WIP: Make operator cluster scoped and add troubleshooting docs by @redhatrises in #224
- fix: allow the toleration of control-plane nodes by default by @domdepasquale in #233
- Ignore .DS_Store folders by @redhatrises in #234
- Fix: "Failed to create new Configmap ... already exists" by @isimluk in #236
- Chores: CI: run the CI also on the maintenance branches by @isimluk in #237
- Chores: update some golang dependencies by @isimluk in #238
- Deployment using AWS CloudFormation by @isimluk in #240
- We cannot support deployment method confined to a single namespace by @isimluk in #242
- Fix display name for marketplace by @redhatrises in #243
- Falcon Gov Cloud support by @isimluk in #245
- Chores: go.mod dependency updates by @isimluk in #246
- Update DS labels for restarting DS when a change is detected by @redhatrises in #244
- Add FalconNodeSensor resource condition status by @redhatrises in #247
- Chores: Update containerd dependency by @isimluk in #251
- Update CSV description by @redhatrises in #249
- Add ENV variable for DS image by @redhatrises in #250
- Do not create pull token secrets when using partner enforced product image by @isimluk in #252
- Use a finalizer to clean up after CR removal for daemonset by @redhatrises in #248
- Validating Image Pull Policy inputs by @jsullivan-CS in #258
- Provide a little more clarity on status error messages by @redhatrises in #255
- Update SDK to 1.21.0 by @jsullivan-CS in #257
- Update OLM CSV Webform UX by @redhatrises in #253
- Don't download kustomize if it already exists by @redhatrises in #260
- Add ability to configure daemonset update strategy by @redhatrises in #259
- If DS strategy is empty, default to RollingUpdate by @redhatrises in #262
- Update SDK to 1.22.0 by @jsullivan-CS in #261
- Update SDK version in bundle files by @redhatrises in #264
- Enable annotations in the CR for the DS service account by @redhatrises in #263
- Add initial release script by @redhatrises in #265
- Add arch and os support labels to CSV by @redhatrises in #267
- Bump kube-rbac-proxy image we use by @isimluk in #268
- Fix/doc updates by @domdepasquale in #254
- Allow release script to work on macos by @redhatrises in #274
- fix: allow node and falcon config to be omitted. fixes #272 by @domdepasquale in #273
- Use upstream fix for kustomize in Makefile by @redhatrises in #269
- Also terminate cleanup pods when CrashLoopBackOff is detected by @redhatrises in #276
- Nodesensor: Gracefull exit from infinite loop by @isimluk in #278
- chores: bump various go dependencies by @isimluk in #275
- Minor status conditions logic update by @redhatrises in #279
- fix: don't deploy secrets to kube-public by @domdepasquale in #280
- nodesensor: Allow users to deploy older versions of the sensor by @isimluk in #282
- chore: ci: dependabot for gh actions by @isimluk in #283
- Bump actions/checkout from 2 to 3 by @dependabot in #285
- Bump actions/setup-go from 2 to 3 by @dependabot in #287
- Bump golangci/golangci-lint-action from 2 to 3 by @dependabot in #284
- Bump github/codeql-action from 1 to 2 by @dependabot in #286
- Add profiling endpoint by @jsullivan-CS in #291
- Fix profiling endpoint by @jsullivan-CS in #292
- Fix breakout conditions in Daemonset cleanup loop by @jsullivan-CS in #295
- Simplify RestartDaemonSet by @jsullivan-CS in #296
- Add pod deletecollection permissions to operator by @jsullivan-CS in #299
- Enable Single Namespace in the CSV by @redhatrises in #298
- fix: add missing EOF by @domdepasquale in #300
- update license to a align with CrowdStrike legal by @domdepasquale in #290
- docs: update version string to match working release by @domdepasquale in #301
- fix: manager configmap by @domdepasquale in #302
- Chores: CI: Check for broken references in the documentation by @isimluk in #304
- tests: add e2e tests by @redhatrises in #310
- tests: add version and common tests by @redhatrises in #306
- tests: add config_cache tests by @redhatrises in #307
- tests: add node daemonset and configmap tests by @redhatrises in #308
- tests: add node controller tests by @redhatrises in #309
- Changing ordering of items by @isimluk in #311
- Prefer null value to empty string "" when setting env variables by @isimluk in #312
- fix: deployment test by @redhatrises in #314
- fix: e...
Contributors
isimluk, domdepasquale, and 4 other contributors
Assets 3
v0.5.5
What's Changed
- Fix/doc updates by @domdepasquale in #254
- Allow release script to work on macos by @redhatrises in #274
- fix: allow node and falcon config to be omitted. fixes #272 by @domdepasquale in #273
- Use upstream fix for kustomize in Makefile by @redhatrises in #269
- Also terminate cleanup pods when CrashLoopBackOff is detected by @redhatrises in #276
- Nodesensor: Gracefull exit from infinite loop by @isimluk in #278
- chores: bump various go dependencies by @isimluk in #275
- Minor status conditions logic update by @redhatrises in #279
- fix: don't deploy secrets to kube-public by @domdepasquale in #280
- nodesensor: Allow users to deploy older versions of the sensor by @isimluk in #282
- chore: ci: dependabot for gh actions by @isimluk in #283
- Bump actions/checkout from 2 to 3 by @dependabot in #285
- Bump actions/setup-go from 2 to 3 by @dependabot in #287
- Bump golangci/golangci-lint-action from 2 to 3 by @dependabot in #284
- Bump github/codeql-action from 1 to 2 by @dependabot in #286
- Add profiling endpoint by @jsullivan-CS in #291
- Fix profiling endpoint by @jsullivan-CS in #292
- Fix breakout conditions in Daemonset cleanup loop by @jsullivan-CS in #295
- Simplify RestartDaemonSet by @jsullivan-CS in #296
- Add pod deletecollection permissions to operator by @jsullivan-CS in #299
- Enable Single Namespace in the CSV by @redhatrises in #298
- fix: add missing EOF by @domdepasquale in #300
Full Changelog: v0.5.4...v0.5.5
Contributors
isimluk, domdepasquale, and 3 other contributors
Assets 3
v0.5.4
What's Changed
- Update DS labels for restarting DS when a change is detected by @redhatrises in #244
- Add FalconNodeSensor resource condition status by @redhatrises in #247
- Chores: Update containerd dependency by @isimluk in #251
- Update CSV description by @redhatrises in #249
- Add ENV variable for DS image by @redhatrises in #250
- Do not create pull token secrets when using partner enforced product image by @isimluk in #252
- Use a finalizer to clean up after CR removal for daemonset by @redhatrises in #248
- Validating Image Pull Policy inputs by @jsullivan-CS in #258
- Provide a little more clarity on status error messages by @redhatrises in #255
- Update SDK to 1.21.0 by @jsullivan-CS in #257
- Update OLM CSV Webform UX by @redhatrises in #253
- Don't download kustomize if it already exists by @redhatrises in #260
- Add ability to configure daemonset update strategy by @redhatrises in #259
- If DS strategy is empty, default to RollingUpdate by @redhatrises in #262
- Update SDK to 1.22.0 by @jsullivan-CS in #261
- Update SDK version in bundle files by @redhatrises in #264
- Enable annotations in the CR for the DS service account by @redhatrises in #263
- Add initial release script by @redhatrises in #265
- Add arch and os support labels to CSV by @redhatrises in #267
- Bump kube-rbac-proxy image we use by @isimluk in #268
New Contributors
- @jsullivan-CS made their first contribution in #258
Full Changelog: v0.5.3...v0.5.4
Contributors
isimluk, redhatrises, and jsullivan-CS
Assets 3
v0.5.3
What's Changed
- Ignore .DS_Store folders by @redhatrises in #234
- Fix: "Failed to create new Configmap ... already exists" by @isimluk in #236
- Chores: CI: run the CI also on the maintenance branches by @isimluk in #237
- Chores: update some golang dependencies by @isimluk in #238
- Deployment using AWS CloudFormation by @isimluk in #240
- We cannot support deployment method confined to a single namespace by @isimluk in #242
- Fix display name for marketplace by @redhatrises in #243
- Falcon Gov Cloud support by @isimluk in #245
- Chores: go.mod dependency updates by @isimluk in #246
Full Changelog: v0.5.2...v0.5.3
Contributors
isimluk and redhatrises