2.6.11

Changelog

[2.6.11] - 2025-10-28

Enhancements

• Updated packages to fix vulnerabilities

Container Security has migrated to a new Vision One Chart. This chart will only get maintenance updates. Please see this guide for more information on how to migrate.

2.6.10

Changelog

[2.6.10] - 2025-08-19

Enhancements

• Updated packages to fix vulnerabilities

Container Security has migrated to a new Vision One Chart. This chart will only get maintenance updates. Please see this guide for more information on how to migrate.

2.6.9

Changelog

[2.6.9] - 2025-06-18

Add a warning to the README that this Helm chart is deprecated. Container Security has migrated to a new Vision One Chart. This chart will only get maintenance updates. Please see this guide for more information on how to migrate.

2.6.8

Changelog

[2.6.8] - 2025-05-29

Bug Fixes

• Add missing admission-controller permission when running in Openshift

Full Changelog: 2.6.7...2.6.8

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.8.tar.gz

2.6.7

Changelog

[2.6.7] - 2025-05-27

Container Security Migrating To New Vision One Chart

• Container Security is migrating to a new Vision One Chart. This will be the last major update on the Cloud One helm chart excluding maintenance updates. Please see this article for more information on how to migrate.

Features

• Secret scan feature - Add support for Runtime Secret Scanning that provides detection of secrets in your running containers, enabling you to identify and respond to secret leaks introduced after deployment
• Add support for mounting custom or self-signed cert files through helm values on container security components. See values for more details
• Socks5 proxy is supported for malware scanning feature

Enhancements

• Improved scout error handling logs
• Updated packages to fix vulnerabilities

Full Changelog: 2.6.6...2.6.7

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.7.tar.gz

2.6.6

Changelog

[2.6.6] - 2025-05-01

Features

• Allow redacting sensitive data from Runtime Security events
• For ArgoCD users, added a cleanup script which helps in uninstallation process and removing all Trend Micro resources

Enhancements

• Improved handling of image pull secrets used by vulnerability and malware scan jobs which results in a reduced total number of secrets created
• On OpenShift, improved the creation process for scanner-trendmicro-container-security service accounts, which also fixes vulnerability scanning when using ArgoCD on OpenShift
• Updated to a newer SBOM version when scanning images for vulnerabilities

Bug Fixes

• Update packages to resolve container image vulnerabilities
• On ArgoCD, fixed sync issues of scan jobs when using auto-sync

Full Changelog: 2.6.5...2.6.6

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.6.tar.gz

2.6.5

Changelog

[2.6.5] - 2025-04-16

Enhancements

• Add support for reporting Falco rules to Splunk for OCI Artifact

Full Changelog: 2.6.4...2.6.5

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.5.tar.gz

2.6.4

Changelog

[2.6.4] - 2025-04-01

Enhancements

• Add additional metadata to compliance scan results
• Add support for NSA compliance scans (available soon in Vision One Container Security)

Bug Fixes

• Fixed an issue with mitigations when leader election was disabled in oversight controller

Full Changelog: 2.6.3...2.6.4

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.4.tar.gz

2.6.3

Changelog

[2.6.3] - 2025-03-12

Bug Fixes

• Fix an issue with compliance scan being skipped when leader election was disabled in oversight controller

Full Changelog: 2.6.2...2.6.3

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.3.tar.gz

2.6.2

Changelog

[2.6.2] - 2025-03-03

Enhancements

• Add support for Openshift privileged namespace exclusion with prefixes
• Add separate timeout configuration for malware and vulnerability scanning
• Allow configuration for maximumEventCount for malware runtime scanning

Bug Fixes

• Update templating for resources, nodeSelectors, tolerations and affinity to resolve ArgoCD out of sync issues
• Fix Falco driver loader failure for Openshift
• Disable leader election when using single replicas for controllers
• Convert special characters in username when using socks5 proxy

Full Changelog: 2.6.1...2.6.2

Upgrade instructions

Sample upgrade command:

helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.6.2.tar.gz