v0.5.0-rc.1

What's Changed

• added branch strategy reference in readme by @vardhaman22 in #249
• chore(deps): update module github.com/aquasecurity/kube-bench to v0.9.0 by @renovate-rancher in #253
• chore(deps): update dependency aquasecurity/kube-bench to v0.9.0 by @renovate-rancher in #252
• add field in report to store compressed base64 encoded avmap data by @vardhaman22 in #250
• added gke-1.6.0 by @vardhaman22 in #257
• updated renovate base branches by @vardhaman22 in #255
• chore(deps): update dependency aquasecurity/kube-bench to v0.9.1 (main) by @renovate-rancher in #264
• chore(deps): update module github.com/aquasecurity/kube-bench to v0.9.1 (main) by @renovate-rancher in #265
• chore(deps): update module github.com/urfave/cli/v2 to v2.27.5 (main) by @renovate-rancher in #266
• chore(deps): update rancher/mirrored-tonistiigi-xx docker tag to v1.5.0 (main) by @renovate-rancher in #267

Full Changelog: v0.2.18...v0.5.0-rc.1

v0.4.0-rc.1

What's Changed

• added branch strategy reference in readme by @vardhaman22 in #249
• [release/v0.4] add field in report to store compressed base64 encoded avmap data by @vardhaman22 in #263
• [v0.4] gke 1.6.0 by @vardhaman22 in #258
• chore(deps): update module github.com/urfave/cli/v2 to v2.27.5 (release/v0.4) by @renovate-rancher in #274
• chore(deps): update rancher/mirrored-tonistiigi-xx docker tag to v1.5.0 (release/v0.4) by @renovate-rancher in #275
• chore(deps): update module github.com/aquasecurity/kube-bench to v0.9.1 (release/v0.4) by @renovate-rancher in #273
• chore(deps): update dependency aquasecurity/kube-bench to v0.9.1 (release/v0.4) by @renovate-rancher in #272

Full Changelog: v0.2.18...v0.4.0-rc.1

v0.3.0-rc.1

What's Changed

• added branch strategy reference in readme by @vardhaman22 in #249
• [release/v0.3] add field in report to store compressed base64 encoded avmap data by @vardhaman22 in #262
• [v0.3] bump kube-bench by @vardhaman22 in #256
• chore(deps): update module github.com/aquasecurity/kube-bench to v0.9.1 (release/v0.3) by @renovate-rancher in #269
• chore(deps): update rancher/mirrored-tonistiigi-xx docker tag to v1.5.0 (release/v0.3) by @renovate-rancher in #271
• chore(deps): update dependency aquasecurity/kube-bench to v0.9.1 (release/v0.3) by @renovate-rancher in #268
• chore(deps): update module github.com/urfave/cli/v2 to v2.27.5 (release/v0.3) by @renovate-rancher in #270

Full Changelog: v0.2.18...v0.3.0-rc.1

v0.2.18

What's Changed

• Correct pod-manifest permissions, all manual for rke2-cis-1.24 by @dereknola in #248

Full Changelog: v0.2.17...v0.2.18

v0.2.18-rc.1

What's Changed

• Correct pod-manifest permissions, all manual for rke2-cis-1.24 by @dereknola in #248

Full Changelog: v0.2.17...v0.2.18-rc.1

v0.2.17

What's Changed

• chore(deps): update module github.com/aquasecurity/kube-bench to v0.8.0 by @renovate-rancher in #215
• chore(deps): update dependency aquasecurity/kube-bench to v0.8.0 by @renovate-rancher in #214
• Modify Ensure that the API Server only makes use of Strong Cryptographic Ciphers by @andypitcher in #216
• kubectl version bump to v1.28.12 by @krunalhinguu in #222
• chore(deps): update module github.com/urfave/cli/v2 to v2.27.3 by @renovate-rancher in #223
• K3s etcd check fix by @bvankampen in #218
• Use variables instead of hardcoded values when possible in RKE2 CIS by @dereknola in #217
• Transition from GH secrets to Vault by @pjbgf in #220
• Add proper remediation info for K3s 4.2.XX sections by @dereknola in #219
• build: Clone and build sonobuoy by @pjbgf in #225
• Publish Prime images using ecm-distro-tools GHA by @pjbgf in #224
• build: Force sequential matrix execution and fix workflow file by @pjbgf in #226
• Add proper remediation info for K3s Master 1.X.XX sections by @dereknola in #221
• Minor changes around the build process by @pjbgf in #227
• build: Fix read vault secret syntax by @pjbgf in #229
• build: Update docker env names by @pjbgf in #230
• Fix K3s 2.X checks and other minor cleanup by @dereknola in #228
• Overhaul RKE2 1.XX Checks by @dereknola in #231
• Minor fixes for K3s checks by @dereknola in #232
• chore(deps): update module github.com/urfave/cli/v2 to v2.27.4 by @renovate-rancher in #233
• Check all merged K3s journal files by @dereknola in #237
• chore(deps): update dependency kubernetes-sigs/kind to v0.24.0 by @renovate-rancher in #238
• Fix audits and remediation for RKE2 2.X Checks by @dereknola in #234
• Fix audits and remediations for RKE2 4.X by @dereknola in #235
• fix condition for etcd node detection for k3s by @vardhaman22 in #239
• Add new yaml validation around checks nature (Automated or Manual) by @andypitcher in #236
• Improve Master 1.2.3 DenyServiceExternalIPs for RKE/RKE2/K3s by @andypitcher in #243
• rke2: set scored:false for audit log checks in permissive profiles by @vardhaman22 in #242
• k3s: fix 1.1.11 check for all the profiles by @vardhaman22 in #246
• rke2: fix master etcd checks by @vardhaman22 in #244
• rke2 fix failed checks for permissive profiles by @vardhaman22 in #247
• chore(deps): update dependency vmware-tanzu/sonobuoy to v0.57.2 by @renovate-rancher in #245

New Contributors

• @bvankampen made their first contribution in #218

Full Changelog: v0.2.16...v0.2.17

v0.2.17-rc14

What's Changed

• chore(deps): update dependency vmware-tanzu/sonobuoy to v0.57.2 by @renovate-rancher in #245

Full Changelog: v0.2.17-rc13...v0.2.17-rc14

v0.2.17-rc13

What's Changed

• rke2 fix failed checks for permissive profiles by @vardhaman22 in #247

Full Changelog: v0.2.17-rc12...v0.2.17-rc13

v0.2.17-rc12

What's Changed

• Improve Master 1.2.3 DenyServiceExternalIPs for RKE/RKE2/K3s by @andypitcher in #243
• rke2: set scored:false for audit log checks in permissive profiles by @vardhaman22 in #242
• k3s: fix 1.1.11 check for all the profiles by @vardhaman22 in #246
• rke2: fix master etcd checks by @vardhaman22 in #244

Full Changelog: v0.2.17-rc11...v0.2.17-rc12

v0.2.17-rc11

What's Changed

• Fix audits and remediation for RKE2 2.X Checks by @dereknola in #234
• Fix audits and remediations for RKE2 4.X by @dereknola in #235
• fix condition for etcd node detection for k3s by @vardhaman22 in #239
• Add new yaml validation around checks nature (Automated or Manual) by @andypitcher in #236

Full Changelog: v0.2.17-rc10...v0.2.17-rc11