Changelogπ£
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
[0.11.4-bb.1] - 2022-12-05π£
Fixedπ£
- Quote value for privileged for stringData
Addedπ£
- Add docs for WAAS
[0.11.4-bb.0] - 2022-11-17π£
Addedπ£
- Added Grafana dasboards
[0.11.3-bb.2] - 2022-10-20π£
Changedπ£
- Modified volume job to add retries on chown + exit with error properly
[0.11.3-bb.1] - 2022-10-14π£
Addedπ£
- Added drop security context capability to defender and console
[0.11.3-bb.0] - 2022-10-12π£
Addedπ£
- Configurable trusted image policy via init job
[0.11.2-bb.0] - 2022-10-06π£
Fixedπ£
- Added affinity for volume upgrade job
- Set job to run by default
- Add resources for volume job, modify wait logic to handle edge cases with unhealthy console
[0.11.1-bb.0] - 2022-10-02π£
Changedπ£
- increase Mem for console to 2gb
[0.11.0-bb.0] - 2022-09-27π£
Addedπ£
- Set Twistlock console to run as nonroot
- Added upgrade option for those with local volumes through the volume-upgrade-job
[0.10.0-bb.2] - 2022-09-22π£
Addedπ£
- Enable mTLS for Twistlock metrics
- Updated Gluon to
0.3.1
[0.10.0-bb.1] - 2022-09-02π£
Addedπ£
- Add support for SAML SSO via init script
[0.10.0-bb.0] - 2022-08-26π£
Changedπ£
- Updated console and defender to
22.06.197
[0.9.1-bb.0] - 2022-09-01π£
Addedπ£
- Conditional PrometheusRule template for Defender count alerts fulfilled by the monitoring stack
[0.9.0-bb.4] - 2022-08-15π£
Fixedπ£
- Update Defenderβs daemonSet to support/add tolerations
[0.9.0-bb.3] - 2022-06-30π£
Fixedπ£
- Fixed handling of metrics/servicemonitor + creation of user for metrics
- Adjust job TTL to 30 minutes to provide time for viewing debug logging
[0.9.0-bb.2] - 2022-07-04π£
Updatedπ£
- Make Twistlock more customization via values.yaml
[0.9.0-bb.1] - 2022-06-28π£
Updatedπ£
- Updated bb base image to 2.0.0
- Updated gluon to 0.2.10
[0.9.0-bb.0] - 2022-06-16π£
Updatedπ£
- Updated to 22.06.179 (console and defender)
- Updated to latest gluon library + latest base image
[0.8.0-bb.0] - 2022-06-10π£
Addedπ£
- Added oscal-component.yaml
[0.7.0-bb.0] - 2022-05-05π£
Addedπ£
- Added initialization job to setup users, license, defenders, policies, and other misc settings
Changedπ£
- Refactored names and labels to use _helpers.tpl
- Added labels to all resources
[0.6.0-bb.0] - 2022-05-03π£
Changedπ£
- Updated twistlock image to 22.01.880
[0.5.0-bb.0] - 2022-03-24π£
Addedπ£
- Added Tempo Zipkin Egress Policy
[0.4.0-bb.1] - 2022-02-28π£
Addedπ£
- Added mTLS PeerAuthentication
- Added mTLS exception for defenders
[0.4.0-bb.0] - 2022-01-31π£
Changedπ£
- Updated to 22.01.840 image versions
- Added documentation for running on k3d
[0.3.0-bb.0] - 2022-01-31π£
Changedπ£
- Update Chart.yaml to follow new standardization for release automation
- Added renovate check to update new standardization
[0.2.0-bb.0] - 2022-01-18π£
Changedπ£
- Relocated bbtests from
test-values.yamltovalues.yaml
[0.1.0-bb.0] - 2021-12-14π£
Addedπ£
- Add annotations to console deployment
[0.0.12-bb.0] - 2021-11-22π£
Changedπ£
- Rename hostname to domain
[0.0.11-bb.0] - 2021-10-27π£
Changedπ£
- Add image pull policy for the console
[0.0.10-bb.0] - 2021-10-27π£
Changedπ£
- Updated console to version
21.08.520 - Updated renovate.json for defender image + appVersion
Addedπ£
tests/images.txtfor package release CI- New network policy to allow for egress to twistlock upstream services
[0.0.9-bb.1] - 2021-10-18π£
Changedπ£
- VS API version to v1beta1 to solve deprecation
- @micah.nagel added to CODEOWNERS, @joshwolf removed
[0.0.9-bb.0] - 2021-09-10π£
Addedπ£
- Documentation link to PCC default configuration for version 21.04.412
- Network Policy template specifically for Defenders communication
- networkPolicies.nodeCidr value to explicity set ingress CIDR for Defender WebSocket connections
[0.0.8-bb.1] - 2021-08-26π£
Addedπ£
- Added istio sidecar scraping network policy
[0.0.8-bb.0] - 2021-08-16π£
Addedπ£
- Upgrade twistlock console to version 21.04.439
[0.0.7-bb.0] - 2021-08-09π£
Addedπ£
- Add conditional syslog audit integration for twistlock console.
[0.0.6-bb.2] - 2021-08-06π£
Addedπ£
- Add Resource limit and request.
[0.0.6-bb.1] - 2021-07-21π£
Addedπ£
- Add openshift toggle. If itβs set, add port 5353 egress rule.
[0.0.6-bb.0] - 2021-06-09π£
Fixedπ£
- Bug with istio network policy, allow egress in ns
[0.0.5-bb.0] - 2021-06-02π£
Changedπ£
- Network policy resource Templates
[0.0.4-bb.3] - 2021-06-01π£
Addedπ£
- Gluon test library dependency
Changedπ£
- CI Test infrastructure. Migrating to helm tests with script capabilities.
[0.0.4-bb.2] - 2021-05-26π£
Addedπ£
- Network policy resource Templates
[0.0.4-bb.0] - 2021-05-12π£
Addedπ£
- Moved all resources into
chart/templates/console/ - Updated twistlock to 21.04.412
[0.0.3-bb.4] - 2021-04-06π£
Addedπ£
- Resource and Toleration Values
[0.0.3-bb.3] - 2021-04-05π£
Changedπ£
- Affinity values modified to standardize
[0.0.3-bb.2] - 2021-03-31π£
Addedπ£
- Values passthroughs for affinity and anti-affinity added
Changedπ£
- Split out resources into separate yaml files
[0.0.3-bb.0] - 2021-02-12π£
Addedπ£
- Options under istio values to control labels, annotations, gateways and full URL modification for twistlock VirtualService.
Changedπ£
- Position of βhostnameβ value in values, from βconsole.hostnameβ to toplevel βhostnameβ.
[0.0.2-bb.2] - 2021-02-11π£
Addedπ£
- imagePullSecret array to values.
Changedπ£
- Image based on 20.12 version from IronBank.
[0.0.2-bb.1] - 2021-01-27π£
Changedπ£
- Updating all βdsop.ioβ URLs to βdso.milβ.
[0.0.2-bb.0] - 2020-12-15π£
Addedπ£
- Istio flag to enable VirtualService when true.
[0.0.1-bb.0] - 2020-06-15π£
Addedπ£
- Initial manifests for deploying Twistlock version 20.04.196.
Last update:
2022-12-09 by Micah Nagel