Changes
This release contains the following changes 🎉. Help spread the word or leave a GitHub star if you like it 😉
⚠️ Upgrade Notes
This update adds new fields to the Custom Resource Definitions (CRDs), Helm does not update CRDs after the initial installation.
To upgrade the CRDs you can run the following script or grab the latest CRDs from the git repo at the v3.15.0 tag:
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v3.15.0/operator/crds/cascading.securecodebox.io_cascadingrules.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v3.15.0/operator/crds/execution.securecodebox.io_parsedefinitions.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v3.15.0/operator/crds/execution.securecodebox.io_scancompletionhooks.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v3.15.0/operator/crds/execution.securecodebox.io_scans.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v3.15.0/operator/crds/execution.securecodebox.io_scantypes.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v3.15.0/operator/crds/execution.securecodebox.io_scheduledscans.yaml🚀 Features
- Add Resources to Scan, ParseDefinition & ScanCompletionHook CRDs @J12934 (#1342)
- Added podSecurityContext to all scanTypes @rseedorff (#1330, #1339)
- ZAP Advanced: Add support for additional report types @malexmave (#1320)
🚓 Security Scanner
- Updating amass config due to recent config changes @rseedorff (#1337)
- ZAP Advanced: Add support for additional report types @malexmave (#1320)
- Upgraded semgrep from 0.110.0 to 0.112.1 @secureCodeBoxBot (#1318, #1348)
- Upgraded gitleaks from v8.6.1 to v8.12.0 @secureCodeBoxBot (#1300, #1321, #1341)
- Upgraded trivy from 0.30.4 to 0.31.3 @secureCodeBoxBot (#1326)
- Upgraded nuclei from v2.7.5 to v2.7.7 @secureCodeBoxBot (#1322)
⚓️ Hooks
- Added a configuration to disable the automatic dashboard import @rseedorff (#1332, #1338)
📚 Documentation
- ADR-0012: Initial Proposal for Cluster Wide Custom Resources (e.g. ClusterScanType) @J12934 (#1270)
- Update Juice Shop URL in documentation example scans @malexmave (#1333)
🔧 Maintenance
- Fix create-new-scanner Make target @malexmave (#1354)
- Improved Megalint Config and applied auto fixes @Ilyesbdlala (#1302)
- Added a configuration to disable the automatic dashboard import (closes #1332) @rseedorff (#1338)
- Updating amass config due to recent config changes @rseedorff (#1337)
- Run Helm docs generation only on main branch @Ilyesbdlala (#1291)
- Add Megalinter output to Gitignore file @malexmave (#1334)
- Added missing podSecurityContext to scanner template @rseedorff (#1358)
📌 Dependencies
- Upgrade ws from 8.8.0 to 8.8.1 @snyk-bot (#1324)
- Upgrade @kubernetes/client-node from 0.16.3 to 0.17.0 @snyk-bot (#1325, #1301)
- Upgrade ws from 8.8.0 to 8.8.1 @snyk-bot (#1298)
- Upgrade jsonpointer from 5.0.0 to 5.0.1 @snyk-bot (#1296)
Distribution
Contributors
Thanks to all our contributors supporting this project 🤗
@Ilyesbdlala, @J12934, @Weltraumschaf, @malexmave and @rseedorff