v0.0.1

Changelog

✨ Notable Changes ✨

• f5dd693: feat(cli): remove code and docs (aquasecurity#18) (@chen-keinan)
• 5c39870: feat(cli): remove code and docs (aquasecurity#20) (@chen-keinan)
• 00ced0c: feat(cli): remove code and docs (aquasecurity#24) (@chen-keinan)
• e13fb50: feat(crds): add preserve unknown fields to all crds (aquasecurity#1839) (@rndmh3ro)
• d472cd6: feat(helm): Add http/https proxy option in operator (aquasecurity#2087) (@bunseokbot)
• c804828: feat(helm): allow users to define an external secrets for tokens (aquasecurity#639) (@cebidhem)
• 8c62a23: feat(helm): only deploy ClusterComplianceReports if enabled (aquasecurity#2027) (@elchenberg)
• 9e635c1: feat(manifests): add metrics component for static installation (aquasecurity#1553) (@davinkevin)
• 0624ca3: feat(op): Add support for sending reports to a webhook (aquasecurity#476) (@simar7)
• fe5142b: feat(operator): create trivy-operator with functional similar to starboard (@chen-keinan)
• f36fb41: feat(operator): update sumdb (@chen-keinan)
• 8427d0d: feat(plugin): remove kube-hunter plugin (aquasecurity#68) (@chen-keinan)
• 8444363: feat(scanner): disable kube-bench and compliance reports by default (aquasecurity#27) (@chen-keinan)
• dcbcb88: feat(scanner): remove aqua scanner (@chen-keinan)
• 4c18826: feat: Add OS information to Vuln Reports and add optional image info metrics (aquasecurity#1643) (@cnwaldron)
• f93a61d: feat: Add clusterCompliance_info metrics (aquasecurity#1333) (@geoffrey1330)
• 96a010b: feat: Add custom header options for webhook notification (aquasecurity#2044) (@bunseokbot)
• 380f5d3: feat: Add existing secret to policies bundle (aquasecurity#1952) (@KevinDW-Fluxys)
• 4862faf: feat: Add optional annotations & endpointAdditionalProperties to ServiceMonitor in helm chart (aquasecurity#1452) (@adberger)
• f6b4e47: feat: Also publish chart to OCI registry (aquasecurity#1889) (@mkilchhofer)
• acdcbb2: feat: Automatically build helm chart on PR merge (aquasecurity#1460) (@adberger)
• cce0c22: feat: Enable passing values for operator through custom ConfigMap and/or Secrets (aquasecurity#1849) (@flash-me)
• 80dd3a8: feat: Flag for changing default cache-dir parameter (aquasecurity#1604) (@ahalay)
• 2432d4a: feat: Helm, allow to define service type for metrics Service (aquasecurity#1929) (@ilpianista)
• 345e2c2: feat: Support scan latest revision for replicationController (aquasecurity#1324) (@deven0t)
• 661a31e: feat: ability to add additional labels to serviceMonitor (aquasecurity#316) (@dotdc)
• 9320ddf: feat: add CVE published and updated date (aquasecurity#1433) (@chen-keinan)
• c2fa6b9: feat: add ConfigAuditReport summary metrics (@erikgb)
• 8d90b5f: feat: add TTLSecondsAfterFinished time set (aquasecurity#983) (@fengshunli)
• 75ca90c: feat: add VulnerabilityReport summary metrics (@erikgb)
• ac41935: feat: add ability to specify which Kubernetes workload resources to scan (aquasecurity#523) (@tks98)
• aede3c2: feat: add aggregated view clusterroles for default user-facing roles (@erikgb)
• e616e7b: feat: add automaxprocs to auto set GOMAXPROCS (aquasecurity#1363) (@jon-rei)
• ce845b8: feat: add cis benchmark report (aquasecurity#817) (@chen-keinan)
• 0cd80df: feat: add custom labels to report (aquasecurity#1094) (@chen-keinan)
• 1ecf6a0: feat: add dbRepositoryUsername and dbRepositoryPassword for dbReposit… (aquasecurity#1657) (@juergen-fast)
• a8dea26: feat: add exposedsecrets metrics (@josedonizetti)
• b05764c: feat: add extra labels for operator and server controllers in Helm chart (aquasecurity#1867) (@fhielpos)
• b699abe: feat: add flag to disable secret scan (aquasecurity#227) (@josedonizetti)
• f2321ee: feat: add functionality to create a namespace independent of the release namespace. This useful, when using Trivy as dependency in another Helm chart (aquasecurity#525) (@)
• ba16b57: feat: add helm value for adding annotations to the trivy operator deployment (aquasecurity#1989) (@martijnvdp)
• 0758fff: feat: add namespace for external policies (aquasecurity#527) (@dirien)
• d54d0ab: feat: add open secret crd (@josedonizetti)
• 859de72: feat: add option to use trivy in offline-scan mode (aquasecurity#677) (@nobbs)
• 693908e: feat: add options to Helm chart to load Trivy config from custom configmap or secret (aquasecurity#2174) (@kimdre)
• 3c5e9e0: feat: add package type to vulnerability report and package_type and class to metrics (aquasecurity#720) (@chen-keinan)
• 1b69d4a: feat: add pkgPath to vulnerability report (aquasecurity#1285) (@chen-keinan)
• 4c0dc05: feat: add protection when links are empty (aquasecurity#804) (@chen-keinan)
• b2fbe9c: feat: add scan target to vulnerabilities (@mycodeself)
• f4faf69: feat: add scanjob automountServiceAccountToken (aquasecurity#610) (@chen-keinan)
• 0bdc3c9: feat: add ttl to reports (aquasecurity#609) (@chen-keinan)
• 0b66fb3: feat: added config for additional server annotations (aquasecurity#1821) (@seekermarcel)
• 488e4e3: feat: added configurable appProtocol to metrics service (aquasecurity#1871) (@seekermarcel)
• 1ed616d: feat: allow changing the default revisionHistoryLimit (aquasecurity#1415) (@tberreis)
• 19a438d: feat: allow configration of trivy-server pvc size (aquasecurity#1801) (@jon-rei)
• b8c1451: feat: allow configuration of operator pod labels (aquasecurity#465) (@)
• d2f73e9: feat: allow configuration of operator pod priorityClass (aquasecurity#501) (@)
• f4fc24b: feat: automatic in cluster trivy-server (aquasecurity#692) (@chen-keinan)
• 63b6dd9: feat: azure workload identity support (aquasecurity#1267) (@chen-keinan)
• e746309: feat: cache sbom by image ref (aquasecurity#1606) (@chen-keinan)
• 4e63f0c: feat: certificate authority scan-job support (aquasecurity#1212) (@chen-keinan)
• 1ac1965: feat: compliance nsa support (aquasecurity#741) (@chen-keinan)
• cad62d7: feat: config for insecure server registry connection (aquasecurity#1819) (@seekermarcel)
• 8ad82b3: feat: configure security context (aquasecurity#1034) (@chen-keinan)
• d5db6f0: feat: configure trivy output compression (aquasecurity#618) (@chen-keinan)
• 4c8f373: feat: create "trivy_vulerability_id" metric for each occurence (aquasecurity#1343) (@alexanderwoehler)
• f2e0371: feat: defsec k8s scanner integration (aquasecurity#125) (@chen-keinan)
• 1d4ec56: feat: dynamic compliance reports (aquasecurity#2160) (@chen-keinan)
• 7fe47f9: feat: enrich compliance report with rbac assessment checks data (aquasecurity#1309) (@chen-keinan)
• dc3e781: feat: ephemeral storage scan-job support (aquasecurity#1177) (@chen-keinan)
• d2825cd: feat: exclude init containers (aquasecurity#1438) (@chen-keinan)
• ce4ca43: feat: exclude node scanning by node labels (aquasecurity#1239) (@chen-keinan)
• 44edfd6: feat: expose more details in trivy_vulnerability_id metric (aquasecurity#962) (@MiggL)
• b52065d: feat: expose trivy.skipFiles in helm values (aquasecurity#1622) (@andrew-gropyus)
• 701749c: feat: exposed secrets scanning (@josedonizetti)
• 289f303: feat: filter container by regex (aquasecurity#2080) (@chen-keinan)
• 6b29e21: feat: image config secret scanner support (aquasecurity#1218) (@chen-keinan)
• c27c9ad: feat: increase the priority of imagePullSecret from the pod specification (aquasecurity#576) (@verdel)
• 67e96c6: feat: ingress resource on config-scan support (aquasecurity#1726) (@chen-keinan)
• 3c3cd02: feat: kbom and k8s core component scan (aquasecurity#1646) (@chen-keinan)
• 55e57e2: feat: limit concurrent node-collector jobs (aquasecurity#1042) (@chen-keinan)
• 8909a40: feat: make node-collector volume and volume mount configurable (aquasecurity#1091) (@chen-keinan)
• 37dab60: feat: make securityContext configurable (aquasecurity#477) (@)
• 35213ef: feat: make trivy-server replicas configurable (aquasecurity#1473) (@jon-rei)
• 8c1a04f: feat: mark old report for deletion (aquasecurity#608) (@chen-keinan)
• 4894fa2: feat: merge rbac finding with configAudit (aquasecurity#711) (@chen-keinan)
• d298b50: feat: migrate rbac policies to kubernetes (aquasecurity#880) (@chen-keinan)
  *...