github kubernetes-sigs/security-profiles-operator v0.2.0

Welcome to the next release of the security-profiles-operator, the former seccomp-operator. We hope you enjoy this release as much as we do! The general usage and setup can be found in our documentation. 🥳

To install the operator, simply run:

$ kubectl apply -f https://raw.githubusercontent.com/kubernetes-sigs/security-profiles-operator/v0.2.0/deploy/operator.yaml

Feel free to provide us any kind of feedback in the official Kubernetes Slack #security-profiles-operator channel.

Changes by Kind

API Change

  • Added new Custom Resource Definition seccompprofiles.seccomp-operator.k8s-sigs.io as an alternative to an annotated ConfigMap for defining seccomp profiles. (#125, @cmurphy)
  • Seccomp profiles can now no longer be configured using the ConfigMap native resource, and instead may now only be defined using the provided SeccompProfile custom resource. (#138, @cmurphy)

Feature

  • Added a new example SeccompProfile to provide a starting point on which to build custom profiles, and an attribute BaseProfileName to the SeccompProfile kind to allow merging syscalls from two profiles. (#152, @cmurphy)
  • Added profile name to events (#129, @saschagrunert)
  • Added Status field to SeccompProfile CRD to provide the path on disk to the profile. (#144, @cmurphy)

Documentation

Bug or Regression

  • Fixed bug to reconcile all profiles in a configMap if one of them is invalid. (#122, @saschagrunert)
  • Fixed error messages in operator log to be displayed correctly, without any additional "reason" field. (#124, @saschagrunert)

Dependencies

Added

  • cloud.google.com/go/firestore: v1.1.0
  • cloud.google.com/go/pubsub: v1.3.1
  • cloud.google.com/go/storage: v1.11.0
  • dmitri.shuralyov.com/gpu/mtl: 666a987
  • github.com/14rcole/gopopulate: b175b21
  • github.com/MakeNowJust/heredoc: bb23615
  • github.com/Microsoft/go-winio: fc70bd9
  • github.com/Microsoft/hcsshim: v0.8.9
  • github.com/VividCortex/ewma: v1.1.1
  • github.com/acarl005/stripansi: 5a71ef0
  • github.com/armon/circbuf: bbbad09
  • github.com/armon/go-metrics: f0300d1
  • github.com/armon/go-radix: 7fddfc3
  • github.com/bketelsen/crypt: 5cbc8cc
  • github.com/cespare/xxhash/v2: v2.1.1
  • github.com/chai2010/gettext-go: c6fed77
  • github.com/checkpoint-restore/go-criu/v4: v4.0.2
  • github.com/chzyer/logex: v1.1.10
  • github.com/chzyer/readline: 2972be2
  • github.com/chzyer/test: a1ea475
  • github.com/cilium/ebpf: a9f01ed
  • github.com/cncf/udpa/go: 269d4d4
  • github.com/containerd/cgroups: bf292b2
  • github.com/containerd/console: v1.0.0
  • github.com/containerd/containerd: v1.3.2
  • github.com/containerd/continuity: aaeac12
  • github.com/containerd/fifo: a9fb20d
  • github.com/containerd/go-runc: 5a6d9f3
  • github.com/containerd/ttrpc: 0e0f228
  • github.com/containerd/typeurl: a93fcdb
  • github.com/containers/common: v0.26.3
  • github.com/containers/image/v5: v5.7.0
  • github.com/containers/libtrust: 14b9617
  • github.com/containers/ocicrypt: v1.0.3
  • github.com/containers/storage: v1.23.7
  • github.com/coreos/go-systemd/v22: v22.0.0
  • github.com/cyphar/filepath-securejoin: v0.2.2
  • github.com/daviddengcn/go-colortext: 511bcaf
  • github.com/docker/distribution: v2.7.1+incompatible
  • github.com/docker/docker-credential-helpers: v0.6.3
  • github.com/docker/go-connections: v0.4.0
  • github.com/docker/go-metrics: v0.0.1
  • github.com/docker/libtrust: aabc10e
  • github.com/exponent-io/jsonpath: d6023ce
  • github.com/fatih/camelcase: v1.0.0
  • github.com/fvbommel/sortorder: v1.0.1
  • github.com/go-gl/glfw/v3.3/glfw: 6f7a984
  • github.com/go-gl/glfw: e6da0ac
  • github.com/godbus/dbus/v5: v5.0.3
  • github.com/godbus/dbus: ade71ed
  • github.com/golangplus/bytes: 45c989f
  • github.com/golangplus/fmt: 2a5d6d7
  • github.com/golangplus/testing: af21d9c
  • github.com/google/martian/v3: v3.0.0
  • github.com/gorilla/mux: v1.7.4
  • github.com/hashicorp/consul/api: v1.1.0
  • github.com/hashicorp/consul/sdk: v0.1.1
  • github.com/hashicorp/go-immutable-radix: v1.0.0
  • github.com/hashicorp/go-msgpack: v0.5.3
  • github.com/hashicorp/go-rootcerts: v1.0.0
  • github.com/hashicorp/go-sockaddr: v1.0.0
  • github.com/hashicorp/go-syslog: v1.0.0
  • github.com/hashicorp/go-uuid: v1.0.1
  • github.com/hashicorp/go.net: v0.0.1
  • github.com/hashicorp/logutils: v1.0.0
  • github.com/hashicorp/mdns: v1.0.0
  • github.com/hashicorp/memberlist: v0.1.3
  • github.com/hashicorp/serf: v0.8.2
  • github.com/ianlancetaylor/demangle: 5e5cf60
  • github.com/klauspost/pgzip: v1.2.5
  • github.com/liggitt/tabwriter: 89fcab3
  • github.com/lithammer/dedent: v1.1.0
  • github.com/mattn/go-shellwords: v1.0.10
  • github.com/miekg/dns: v1.0.14
  • github.com/mistifyio/go-zfs: v2.1.1+incompatible
  • github.com/mitchellh/cli: v1.0.0
  • github.com/mitchellh/go-wordwrap: v1.0.0
  • github.com/mitchellh/gox: v0.4.0
  • github.com/mitchellh/iochan: v1.0.0
  • github.com/moby/sys/mountinfo: v0.4.0
  • github.com/moby/term: 672ec06
  • github.com/morikuni/aec: v1.0.0
  • github.com/mrunalp/fileutils: 7d4729f
  • github.com/mtrmac/gpgme: v0.1.2
  • github.com/opencontainers/go-digest: v1.0.0
  • github.com/opencontainers/image-spec: 775207b
  • github.com/opencontainers/runc: v1.0.0-rc91
  • github.com/ostreedev/ostree-go: 759a8c1
  • github.com/pascaldekloe/goe: 57f6aae
  • github.com/posener/complete: v1.1.1
  • github.com/pquerna/ffjson: dac163c
  • github.com/ryanuber/columnize: 9b3edd6
  • github.com/sean-/seed: e2103e2
  • github.com/tchap/go-patricia: v2.3.0+incompatible
  • github.com/vbatts/tar-split: v0.11.1
  • github.com/vbauerster/mpb/v5: v5.3.0
  • github.com/vishvananda/netlink: v1.1.0
  • github.com/vishvananda/netns: 0a2b9b5
  • go.mozilla.org/pkcs7: 432b235
  • gotest.tools/v3: v3.0.2
  • k8s.io/cli-runtime: v0.19.2
  • k8s.io/kubectl: v0.19.2
  • k8s.io/metrics: v0.19.2
  • rsc.io/quote/v3: v3.1.0
  • rsc.io/sampler: v1.3.0
  • sigs.k8s.io/kustomize: v2.0.3+incompatible
  • sigs.k8s.io/structured-merge-diff/v4: v4.0.1

Changed

Removed

  • github.com/crossplane/crossplane-tools: bb8b2ce
  • github.com/dave/jennifer: v1.3.0
  • github.com/seccomp/containers-golang: v0.6.0
3 months ago