What's Changed
- chore(deps): update module github.com/aquasecurity/kube-bench to v0.8.0 by @renovate-rancher in #215
- chore(deps): update dependency aquasecurity/kube-bench to v0.8.0 by @renovate-rancher in #214
- Modify
Ensure that the API Server only makes use of Strong Cryptographic Ciphersby @andypitcher in #216 - kubectl version bump to v1.28.12 by @krunalhinguu in #222
- chore(deps): update module github.com/urfave/cli/v2 to v2.27.3 by @renovate-rancher in #223
- K3s etcd check fix by @bvankampen in #218
- Use variables instead of hardcoded values when possible in RKE2 CIS by @dereknola in #217
- Transition from GH secrets to Vault by @pjbgf in #220
- Add proper remediation info for K3s 4.2.XX sections by @dereknola in #219
- build: Clone and build sonobuoy by @pjbgf in #225
- Publish Prime images using ecm-distro-tools GHA by @pjbgf in #224
- build: Force sequential matrix execution and fix workflow file by @pjbgf in #226
- Add proper remediation info for K3s Master 1.X.XX sections by @dereknola in #221
- Minor changes around the build process by @pjbgf in #227
- build: Fix read vault secret syntax by @pjbgf in #229
- build: Update docker env names by @pjbgf in #230
- Fix K3s 2.X checks and other minor cleanup by @dereknola in #228
- Overhaul RKE2 1.XX Checks by @dereknola in #231
- Minor fixes for K3s checks by @dereknola in #232
- chore(deps): update module github.com/urfave/cli/v2 to v2.27.4 by @renovate-rancher in #233
- Check all merged K3s journal files by @dereknola in #237
- chore(deps): update dependency kubernetes-sigs/kind to v0.24.0 by @renovate-rancher in #238
- Fix audits and remediation for RKE2 2.X Checks by @dereknola in #234
- Fix audits and remediations for RKE2 4.X by @dereknola in #235
- fix condition for etcd node detection for k3s by @vardhaman22 in #239
- Add new yaml validation around checks nature (Automated or Manual) by @andypitcher in #236
- Improve Master 1.2.3 DenyServiceExternalIPs for RKE/RKE2/K3s by @andypitcher in #243
- rke2: set scored:false for audit log checks in permissive profiles by @vardhaman22 in #242
- k3s: fix 1.1.11 check for all the profiles by @vardhaman22 in #246
- rke2: fix master etcd checks by @vardhaman22 in #244
- rke2 fix failed checks for permissive profiles by @vardhaman22 in #247
- chore(deps): update dependency vmware-tanzu/sonobuoy to v0.57.2 by @renovate-rancher in #245
New Contributors
- @bvankampen made their first contribution in #218
Full Changelog: v0.2.16...v0.2.17