Releases: kubescape/storage
Release v0.0.33
- Add
GeneratedNetworkPolicyCRD - Add network policy generation logic
TODO:
- Move generation logic to an kubescape package (it needs to be used by BE)
- Add
KnownServersCRD - Check if kubernetes type can be used (?)
Release v0.0.32
Overview
Commit b528275 introduced a bug which prevented resources from updating and failed the system tests.
This PR reverts the commit. It keeps the filesystem limit fix functioning.
Release v0.0.29
PR Type:
Bug fix, Refactoring
PR Description:
This PR includes changes to conform to the filename limit of the underlying file system. It also cleans up redundant type definitions from the Vulnerability Summary storage and fixes typos in Vulnerability Summary storage source file names. The changes include refactoring the file extensions for JSON and metadata files, adding helper functions for file path creation, and updating the corresponding tests.
PR Main Files Walkthrough:
files:
pkg/registry/file/storage.go: The file extensions for JSON and metadata files have been shortened. Helper functions have been added for creating paths for payload and metadata files, and for identifying if a file is a metadata or payload file. These changes are reflected in the functions that write, get, and count files.
pkg/registry/file/storage_test.go: The tests have been updated to reflect the changes in file extensions and the use of helper functions for file path creation in the storage.go file.
pkg/registry/file/vulnerabilitysummarystorage.go: This is a new file that implements a storage for vulnerability summaries. It provides vulnerability summaries for scopes like namespace and cluster. The summaries are generated on the fly and not stored.
pkg/registry/file/vulnerabilitysummarystorage_test.go: This new file contains tests for the vulnerability summary storage. The tests cover getting a single vulnerability summary and a list of vulnerability summaries.
User Description:
What this PR does?
This PR:
- ensures we conform to the filename limit of the underlying file system
- cleans up redundant type definitions from the Vulnerability Summary storage
- fixes typos in Vulnerability Summary storage source file names
Release v0.0.22
PR Type:
Refactoring
PR Description:
This pull request includes changes related to code formatting and the adjustment of import orders across multiple files in the project. The changes are made to comply with the 'gofmt' tool, a tool that automatically formats Go source code.
PR Main Files Walkthrough:
pkg/admission/wardleinitializer/interfaces.go: Adjusted the order of import statements.
pkg/admission/wardleinitializer/wardleinitializer.go: Adjusted the order of import statements.
pkg/admission/wardleinitializer/wardleinitializer_test.go: Adjusted the order of import statements.
pkg/apis/softwarecomposition/install/install.go: Adjusted the order of import statements.
pkg/apis/softwarecomposition/install/roundtrip_test.go: Adjusted the order of import statements.
pkg/apis/softwarecomposition/validation/validation.go: Adjusted the order of import statements.
pkg/apiserver/scheme_test.go: Adjusted the order of import statements.
pkg/registry/file/watch.go: Adjusted the order of import statements.
pkg/registry/softwarecomposition/sbomspdxv2p3/strategy.go: Adjusted the order of import statements and added new lines for better readability.
pkg/registry/softwarecomposition/sbomspdxv2p3filtered/strategy.go: Adjusted the order of import statements and added new lines for better readability.
User Description:
gofmt and trigger release
Release v0.0.20
PR Type:
Enhancement
PR Description:
This PR introduces new API objects for vulnerability summaries. It includes the creation of new Go structures, their respective functions, and the automatic generation of conversion functions. The changes are mainly in the 'softwarecomposition' package, with the addition of new tests for the implemented functionality.
PR Main Files Walkthrough:
pkg/registry/file/vulnarabilitysummarystoarge_test.go: This file contains the tests for the new Vulnerability Summary Storage implementation. It tests the different methods such as Create, Delete, Watch, GetList, GuaranteedUpdate, Count, and Get.
pkg/apis/softwarecomposition/v1beta1/zz_generated.conversion.go: This file contains the auto-generated conversion functions for the new VulnerabilitySummary objects. These functions are used to convert between the internal version of the API and the v1beta1 version.
pkg/apis/softwarecomposition/types.go: This file contains the definition of the new VulnerabilitySummary objects in the internal version of the API.
pkg/apis/softwarecomposition/v1beta1/types.go: This file contains the definition of the new VulnerabilitySummary objects in the v1beta1 version of the API.
pkg/registry/softwarecomposition/vulnerabilitysummary/strategy.go: This file contains the implementation of the specific behavior that the API server needs to have for the new VulnerabilitySummary objects.
pkg/registry/softwarecomposition/vulnerabilitysummary/etcd.go: This file contains the storage interface implementation for the new VulnerabilitySummary objects. It includes the setup of the REST storage for these objects.
pkg/apiserver/apiserver.go: This file contains the setup of the API group for the new VulnerabilitySummary objects. It includes the setup of the REST storage for these objects.
pkg/generated/openapi/zz_generated.openapi.go: This file contains the auto-generated open API schemas for the new VulnerabilitySummary objects.
pkg/generated/clientset/versioned/typed/softwarecomposition/v1beta1/vulnerabilitysummary.go: This file contains the auto-generated clientset for the new VulnerabilitySummary objects.
pkg/generated/listers/softwarecomposition/v1beta1/vulnerabilitysummary.go: This file contains the auto-generated listers for the new VulnerabilitySummary objects. These listers allow to list/get VulnerabilitySummary objects from a shared index.
Release v0.0.18
Support configurationscansummaries objects for namespace and cluster scope:
kubectl get configurationscansummaries.spdx.softwarecomposition.kubescape.io <namespace>- This will return aConfigurationScanSummaryobject for the given namespace. It will be build based on theWorkloadConfigurationScanSummaryobjects that exist for that namespacekubectl get configurationscansummaries.spdx.softwarecomposition.kubescape.io- This will return aConfigurationScanSummaryListobject, where each item is a summary for a namespace.
Release v0.0.16
- update github workflow - point to the right helm chart
- trigger system tests
Release v0.0.8
What this PR changes?
This PR adds the missing Negligible severity level for vulnerability counters.
Release v0.0.7
What this PR changes?
This commit:
- Introduces a new API type: SBOM Summary. The new type acts as a lightweight beacon that will be created whenever an SBOM is created, so the Storage APIServer can avoid loading entire large SBOMs into memory when listing and serving Watch requests.
- Ditto for new type Vulnerability Manifest Summary.
- Fixes a conflict with Makefile that was introduced when creating a
builddirectory in the source tree.
Release v0.0.6
Merge pull request #27 from kubescape/telemetry add otel tracing and events