2.0.16

• Fixed an issue with false positive during curl to bash analysis.

Thanks to @avbasov for reporting it.

2.0.12

[2.0.12] 14-09-2025

Added

• Docker Inspection: Using pip installation without --no-cache-dir

2.0.11

• Docker Inspection: Use apk add with --no-cache

Read more about every implemented Docker Best Practices in the plugin.

2.0.9

[2.0.9] 16-08-2025

Read more about Kubernetes Security Best Practices

Changed

• Enforcing using YAML plugin as required.

2.0.8

New inspections

• Disallowed volume type inspection (Pod Security Standards - Restricted)

Technical improvements

• Forcing ktlint rules in the project
• Performed the following refactor
• Changed naming of fields for internalization

2.0.6

• Naming of fields for internalization
• Performed small refactoring
• Added referral for documentation site

2.0.5

2.0.5

• Kubernetes Security Standards: Insecure sysctls

2.0.4

[2.0.4] 05-07-2025

Added

• Kubernetes Security Standards: Setting custom SELinux options
• Kubernetes Security Standards: Non-Default /proc mount
• Kubernetes Security Standards: Unconfined seccomp profile

2.0.3

[2.0.3] 22-06-2025

Changed

• Performed refactoring of kubernetes inspections

Added

• Kubernetes Security Standards: AppArmor is disable or override
• Kubernetes Security Standards: HostPort is used

2.0.2

[2.0.2] 21-06-2025

Added

• Kubernetes Security: detect using privileged containers
• Kubernetes Security: detect sharing the host namespace
• Kubernetes Security: detect using insecure hostPath volume types

Changed

• Non-root containers inspection is more relaxed and analyzes only prohibited values.

Blog

• Check out this blog post about new features, rebranding, and plans for the plugin.