From 8557783cd66008e38c74b328486db2d60e786fba Mon Sep 17 00:00:00 2001 From: Matthias Bertschy Date: Wed, 5 Jun 2024 15:51:11 +0200 Subject: [PATCH] prepare for next release Signed-off-by: Matthias Bertschy --- charts/kubescape-operator/Chart.yaml | 4 +- .../__snapshot__/snapshot_test.yaml.snap | 102 +++++++++--------- charts/kubescape-operator/values.yaml | 8 +- 3 files changed, 57 insertions(+), 57 deletions(-) diff --git a/charts/kubescape-operator/Chart.yaml b/charts/kubescape-operator/Chart.yaml index 482efcff..126a2e5d 100644 --- a/charts/kubescape-operator/Chart.yaml +++ b/charts/kubescape-operator/Chart.yaml @@ -9,14 +9,14 @@ type: application # to the chart and its templates, including the app version. # Versions are expected to follow Semantic Versioning (https://semver.org/) -version: 1.18.15 +version: 1.18.16 # This is the version number of the application being deployed. This version number should be # incremented each time you make changes to the application. Versions are not expected to # follow Semantic Versioning. They should reflect the version the application is using. # It is recommended to use it with quotes. -appVersion: 1.18.15 +appVersion: 1.18.16 maintainers: - name: Ben Hirschberg diff --git a/charts/kubescape-operator/tests/__snapshot__/snapshot_test.yaml.snap b/charts/kubescape-operator/tests/__snapshot__/snapshot_test.yaml.snap index f64bb187..edb9ca54 100644 --- a/charts/kubescape-operator/tests/__snapshot__/snapshot_test.yaml.snap +++ b/charts/kubescape-operator/tests/__snapshot__/snapshot_test.yaml.snap @@ -1,6 +1,6 @@ all capabilities: 1: | - raw: "Thank you for installing kubescape-operator version 1.18.15.\nView your cluster's configuration scanning schedule: \n> kubectl -n kubescape get cj kubescape-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}'\n\nTo change the schedule, set `.spec.schedule`: \n> kubectl -n kubescape edit cj kubescape-scheduler\nView your cluster's image scanning schedule: \n> kubectl -n kubescape get cj kubevuln-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}' \n\nTo change the schedule, edit `.spec.schedule`: \n> kubectl -n kubescape edit cj kubevuln-scheduler\nView your configuration scan summaries:\n> kubectl get workloadconfigurationscansummaries -A\n\nDetailed reports are also available:\n> kubectl get workloadconfigurationscans -A\n\nView your image vulnerabilities scan summaries:\n> kubectl get vulnerabilitymanifestsummaries -A\n\nDetailed reports are also available:\n> kubectl get vulnerabilitymanifests -A\n\nkubescape-operator generates suggested network policies. To view them: \n> kubectl get generatednetworkpolicies -n \n\n" + raw: "Thank you for installing kubescape-operator version 1.18.16.\nView your cluster's configuration scanning schedule: \n> kubectl -n kubescape get cj kubescape-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}'\n\nTo change the schedule, set `.spec.schedule`: \n> kubectl -n kubescape edit cj kubescape-scheduler\nView your cluster's image scanning schedule: \n> kubectl -n kubescape get cj kubevuln-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}' \n\nTo change the schedule, edit `.spec.schedule`: \n> kubectl -n kubescape edit cj kubevuln-scheduler\nView your configuration scan summaries:\n> kubectl get workloadconfigurationscansummaries -A\n\nDetailed reports are also available:\n> kubectl get workloadconfigurationscans -A\n\nView your image vulnerabilities scan summaries:\n> kubectl get vulnerabilitymanifestsummaries -A\n\nDetailed reports are also available:\n> kubectl get vulnerabilitymanifests -A\n\nkubescape-operator generates suggested network policies. To view them: \n> kubectl get generatednetworkpolicies -n \n\n" 2: | apiVersion: batch/v1 kind: CronJob @@ -206,7 +206,7 @@ all capabilities: app: gateway app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: gateway - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -335,7 +335,7 @@ all capabilities: metadata: labels: app: gateway - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 tier: ks-control-plane name: gateway namespace: kubescape @@ -416,7 +416,7 @@ all capabilities: app: grype-offline-db app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: grype-offline-db - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core tier: ks-control-plane spec: @@ -608,7 +608,7 @@ all capabilities: app: kollector app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kollector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core tier: ks-control-plane spec: @@ -993,7 +993,7 @@ all capabilities: app: kubescape app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -1023,7 +1023,7 @@ all capabilities: app: kubescape app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -1255,7 +1255,7 @@ all capabilities: metadata: labels: app: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 tier: ks-control-plane name: kubescape namespace: kubescape @@ -1523,7 +1523,7 @@ all capabilities: app: kubevuln app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubevuln - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -1553,7 +1553,7 @@ all capabilities: name: cloud-secret - name: OTEL_COLLECTOR_SVC value: otel-collector:4317 - image: quay.io/kubescape/kubevuln:v0.3.22 + image: quay.io/kubescape/kubevuln:v0.3.25 imagePullPolicy: IfNotPresent livenessProbe: httpGet: @@ -1875,7 +1875,7 @@ all capabilities: app: node-agent app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: node-agent - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -1942,7 +1942,7 @@ all capabilities: fieldRef: fieldPath: metadata.namespace - name: NodeName - image: quay.io/kubescape/node-agent:v0.2.71 + image: quay.io/kubescape/node-agent:v0.2.81 imagePullPolicy: IfNotPresent name: node-agent resources: @@ -2208,7 +2208,7 @@ all capabilities: app: operator app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: operator - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -2222,7 +2222,7 @@ all capabilities: - 2>&1 env: - name: HELM_RELEASE - value: kubescape-operator-1.18.15 + value: kubescape-operator-1.18.16 - name: GOMEMLIMIT value: 100MiB - name: KS_LOGGER_LEVEL @@ -2510,7 +2510,7 @@ all capabilities: app: otel-collector app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: otel-collector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -2605,7 +2605,7 @@ all capabilities: metadata: labels: app: otel-collector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 tier: ks-control-plane name: otel-collector namespace: kubescape @@ -2872,7 +2872,7 @@ all capabilities: app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: service-discovery - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 otel: enabled tier: ks-control-plane name: RELEASE-NAME @@ -3182,7 +3182,7 @@ all capabilities: name: apiserver resources: limits: - cpu: 500m + cpu: 1500m memory: 1500Mi requests: cpu: 100m @@ -3633,7 +3633,7 @@ all capabilities: app: synchronizer app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: synchronizer - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -3645,7 +3645,7 @@ all capabilities: - /usr/bin/client env: - name: HELM_RELEASE - value: kubescape-operator-1.18.15 + value: kubescape-operator-1.18.16 - name: GOMEMLIMIT value: 250MiB - name: KS_LOGGER_LEVEL @@ -3785,7 +3785,7 @@ all capabilities: namespace: kubescape default capabilities: 1: | - raw: "Thank you for installing kubescape-operator version 1.18.15.\nView your cluster's configuration scanning schedule: \n> kubectl -n kubescape get cj kubescape-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}'\n\nTo change the schedule, set `.spec.schedule`: \n> kubectl -n kubescape edit cj kubescape-scheduler\nView your cluster's image scanning schedule: \n> kubectl -n kubescape get cj kubevuln-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}' \n\nTo change the schedule, edit `.spec.schedule`: \n> kubectl -n kubescape edit cj kubevuln-scheduler\n\n\nView your image vulnerabilities scan summaries:\n> kubectl get vulnerabilitymanifestsummaries -A\n\nDetailed reports are also available:\n> kubectl get vulnerabilitymanifests -A\n\nkubescape-operator generates suggested network policies. To view them: \n> kubectl get generatednetworkpolicies -n \n\n" + raw: "Thank you for installing kubescape-operator version 1.18.16.\nView your cluster's configuration scanning schedule: \n> kubectl -n kubescape get cj kubescape-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}'\n\nTo change the schedule, set `.spec.schedule`: \n> kubectl -n kubescape edit cj kubescape-scheduler\nView your cluster's image scanning schedule: \n> kubectl -n kubescape get cj kubevuln-scheduler -o=jsonpath='{.metadata.name}{\"\\t\"}{.spec.schedule}{\"\\n\"}' \n\nTo change the schedule, edit `.spec.schedule`: \n> kubectl -n kubescape edit cj kubevuln-scheduler\n\n\nView your image vulnerabilities scan summaries:\n> kubectl get vulnerabilitymanifestsummaries -A\n\nDetailed reports are also available:\n> kubectl get vulnerabilitymanifests -A\n\nkubescape-operator generates suggested network policies. To view them: \n> kubectl get generatednetworkpolicies -n \n\n" 2: | apiVersion: v1 data: @@ -3895,7 +3895,7 @@ default capabilities: app: gateway app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: gateway - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -4024,7 +4024,7 @@ default capabilities: metadata: labels: app: gateway - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 tier: ks-control-plane name: gateway namespace: kubescape @@ -4105,7 +4105,7 @@ default capabilities: app: grype-offline-db app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: grype-offline-db - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core tier: ks-control-plane spec: @@ -4297,7 +4297,7 @@ default capabilities: app: kollector app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kollector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core tier: ks-control-plane spec: @@ -4682,7 +4682,7 @@ default capabilities: app: kubescape app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -4712,7 +4712,7 @@ default capabilities: app: kubescape app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -4944,7 +4944,7 @@ default capabilities: metadata: labels: app: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 tier: ks-control-plane name: kubescape namespace: kubescape @@ -5212,7 +5212,7 @@ default capabilities: app: kubevuln app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubevuln - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -5242,7 +5242,7 @@ default capabilities: name: cloud-secret - name: OTEL_COLLECTOR_SVC value: otel-collector:4317 - image: quay.io/kubescape/kubevuln:v0.3.22 + image: quay.io/kubescape/kubevuln:v0.3.25 imagePullPolicy: IfNotPresent livenessProbe: httpGet: @@ -5528,7 +5528,7 @@ default capabilities: app: node-agent app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: node-agent - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -5568,7 +5568,7 @@ default capabilities: fieldRef: fieldPath: metadata.namespace - name: NodeName - image: quay.io/kubescape/node-agent:v0.2.71 + image: quay.io/kubescape/node-agent:v0.2.81 imagePullPolicy: IfNotPresent name: node-agent resources: @@ -5834,7 +5834,7 @@ default capabilities: app: operator app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: operator - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -5848,7 +5848,7 @@ default capabilities: - 2>&1 env: - name: HELM_RELEASE - value: kubescape-operator-1.18.15 + value: kubescape-operator-1.18.16 - name: GOMEMLIMIT value: 100MiB - name: KS_LOGGER_LEVEL @@ -6136,7 +6136,7 @@ default capabilities: app: otel-collector app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: otel-collector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -6231,7 +6231,7 @@ default capabilities: metadata: labels: app: otel-collector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 tier: ks-control-plane name: otel-collector namespace: kubescape @@ -6320,7 +6320,7 @@ default capabilities: app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: service-discovery - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 otel: enabled tier: ks-control-plane name: RELEASE-NAME @@ -6630,7 +6630,7 @@ default capabilities: name: apiserver resources: limits: - cpu: 500m + cpu: 1500m memory: 1500Mi requests: cpu: 100m @@ -7081,7 +7081,7 @@ default capabilities: app: synchronizer app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: synchronizer - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -7093,7 +7093,7 @@ default capabilities: - /usr/bin/client env: - name: HELM_RELEASE - value: kubescape-operator-1.18.15 + value: kubescape-operator-1.18.16 - name: GOMEMLIMIT value: 250MiB - name: KS_LOGGER_LEVEL @@ -7233,7 +7233,7 @@ default capabilities: namespace: kubescape minimal capabilities: 1: | - raw: "Thank you for installing kubescape-operator version 1.18.15.\n\n\n\n\nView your image vulnerabilities scan summaries:\n> kubectl get vulnerabilitymanifestsummaries -A\n\nDetailed reports are also available:\n> kubectl get vulnerabilitymanifests -A\n\nkubescape-operator generates suggested network policies. To view them: \n> kubectl get generatednetworkpolicies -n \n\n" + raw: "Thank you for installing kubescape-operator version 1.18.16.\n\n\n\n\nView your image vulnerabilities scan summaries:\n> kubectl get vulnerabilitymanifestsummaries -A\n\nDetailed reports are also available:\n> kubectl get vulnerabilitymanifests -A\n\nkubescape-operator generates suggested network policies. To view them: \n> kubectl get generatednetworkpolicies -n \n\n" 2: | apiVersion: v1 data: @@ -7542,7 +7542,7 @@ minimal capabilities: app: kubescape app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -7571,7 +7571,7 @@ minimal capabilities: app: kubescape app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubescape - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -7931,7 +7931,7 @@ minimal capabilities: app: kubevuln app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: kubevuln - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -7961,7 +7961,7 @@ minimal capabilities: name: cloud-secret - name: OTEL_COLLECTOR_SVC value: otel-collector:4317 - image: quay.io/kubescape/kubevuln:v0.3.22 + image: quay.io/kubescape/kubevuln:v0.3.25 imagePullPolicy: IfNotPresent livenessProbe: httpGet: @@ -8206,7 +8206,7 @@ minimal capabilities: app: node-agent app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: node-agent - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -8246,7 +8246,7 @@ minimal capabilities: fieldRef: fieldPath: metadata.namespace - name: NodeName - image: quay.io/kubescape/node-agent:v0.2.71 + image: quay.io/kubescape/node-agent:v0.2.81 imagePullPolicy: IfNotPresent name: node-agent resources: @@ -8503,7 +8503,7 @@ minimal capabilities: app: operator app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: operator - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/tier: core otel: enabled tier: ks-control-plane @@ -8517,7 +8517,7 @@ minimal capabilities: - 2>&1 env: - name: HELM_RELEASE - value: kubescape-operator-1.18.15 + value: kubescape-operator-1.18.16 - name: GOMEMLIMIT value: 100MiB - name: KS_LOGGER_LEVEL @@ -8754,7 +8754,7 @@ minimal capabilities: app: otel-collector app.kubernetes.io/instance: RELEASE-NAME app.kubernetes.io/name: otel-collector - helm.sh/chart: kubescape-operator-1.18.15 + helm.sh/chart: kubescape-operator-1.18.16 kubescape.io/ignore: "true" kubescape.io/tier: core tier: ks-control-plane @@ -9054,7 +9054,7 @@ minimal capabilities: name: apiserver resources: limits: - cpu: 500m + cpu: 1500m memory: 1500Mi requests: cpu: 100m diff --git a/charts/kubescape-operator/values.yaml b/charts/kubescape-operator/values.yaml index 70d9e7f0..6e061de8 100644 --- a/charts/kubescape-operator/values.yaml +++ b/charts/kubescape-operator/values.yaml @@ -287,7 +287,7 @@ kubevuln: image: # -- source code: https://github.com/kubescape/kubevuln repository: quay.io/kubescape/kubevuln - tag: v0.3.22 + tag: v0.3.25 pullPolicy: IfNotPresent replicaCount: 1 @@ -458,7 +458,7 @@ storage: cpu: 100m memory: 400Mi limits: - cpu: 500m + cpu: 1500m memory: 1500Mi # +++++++++++++++++++++++++++++ Node-agent ++++++++++++++++++++++++++++++++++++++++++++++++ @@ -468,7 +468,7 @@ nodeAgent: image: # -- source code: https://github.com/kubescape/node-agent repository: quay.io/kubescape/node-agent - tag: v0.2.71 + tag: v0.2.81 pullPolicy: IfNotPresent config: @@ -501,7 +501,7 @@ nodeAgent: limits: cpu: 500m memory: 700Mi - + # GOMEMLIMIT should be lower than the memory limit gomemlimit: 600MiB