github/kubescape
1
0
Fork 0
mirror of https://github.com/kubescape/kubescape.git synced 2026-02-14 09:59:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,330 Commits 20 Branches 551 Tags
b6a4e282f956bcb8bac13f5ef9ac7ce32daabf20
Commit Graph

3330 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Matthias Bertschy
b6a4e282f9 Revamp documentation and reduce host sensor workers 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-11-30 11:47:00 +01:00
Matthias Bertschy
acc9b54b2b Merge pull request #1895 from pfarikrispy/pfarikrispy-patch-1 
update from Debian 12 to 13 when building container images
 2025-11-26 14:52:53 +01:00
Christian Peper
1ffa29fbaa feat(security): update golang to debian trixie 
build in the same env as the final image

Signed-off-by: Christian Peper <dreamszz@gmail.com>
 2025-11-26 14:34:49 +01:00
Christian Peper
2ae30a8162 feat(security): update to Debian 13 
Signed-off-by: Christian Peper <dreamszz@gmail.com>
 2025-11-26 14:32:41 +01:00
Christian Peper
0ca5378c6b feat(security): update to Debian 13 
use debian 13 as a base image

Signed-off-by: Christian Peper <dreamszz@gmail.com>
 2025-11-26 14:30:46 +01:00
Matthias Bertschy
f51a1281f7 Merge pull request #1892 from kubescape/dependabot/go_modules/httphandler/golang.org/x/crypto-0.45.0 
Bump golang.org/x/crypto from 0.41.0 to 0.45.0 in /httphandler
 2025-11-21 20:59:38 +01:00
dependabot[bot]
5469d8bc04 Bump golang.org/x/crypto from 0.41.0 to 0.45.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.41.0 to 0.45.0.
- [Commits](https://github.com/golang/crypto/compare/v0.41.0...v0.45.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.45.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-11-21 17:10:28 +01:00
Matthias Bertschy
bd7c0c580e fix go mod tidy 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.45 v3.0.45-rc.4 		2025-11-11 17:52:55 +01:00
Matthias Bertschy
154fec1385 Allow artifact-metadata read in release workflow 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.45-rc.3 		2025-11-11 16:14:32 +01:00
Matthias Bertschy
5c2275e32a Allow artifact-metadata read in release workflow 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.45-rc.2 		2025-11-11 16:13:16 +01:00
Matthias Bertschy
2da4736201 fix workflow permissions 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.45-rc.1 		2025-11-11 16:10:15 +01:00
Matthias Bertschy
aefafeae6f Merge pull request #1890 from kubescape/dependabot/go_modules/github.com/opencontainers/selinux-1.13.0 
Bump github.com/opencontainers/selinux from 1.12.0 to 1.13.0
v3.0.45-rc.0 		2025-11-11 14:10:59 +01:00
dependabot[bot]
1772b38b8c Bump github.com/opencontainers/selinux from 1.12.0 to 1.13.0 
Bumps [github.com/opencontainers/selinux](https://github.com/opencontainers/selinux) from 1.12.0 to 1.13.0.
- [Release notes](https://github.com/opencontainers/selinux/releases)
- [Commits](https://github.com/opencontainers/selinux/compare/v1.12.0...v1.13.0)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/selinux
  dependency-version: 1.13.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-11-11 12:44:20 +00:00
Matthias Bertschy
c844f42208 Merge pull request #1889 from kubescape/dependabot/go_modules/github.com/containerd/containerd-1.7.29 
Bump github.com/containerd/containerd from 1.7.28 to 1.7.29
v3.0.44 		2025-11-07 08:44:37 +01:00
dependabot[bot]
b86d051998 Bump github.com/containerd/containerd from 1.7.28 to 1.7.29 
Bumps [github.com/containerd/containerd](https://github.com/containerd/containerd) from 1.7.28 to 1.7.29.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v1.7.28...v1.7.29)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd
  dependency-version: 1.7.29
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
v3.0.44-rc.0 		2025-11-07 08:32:59 +01:00
Matthias Bertschy
aaa8d1ed35 Merge pull request #1888 from kubescape/dependabot/go_modules/github.com/containerd/containerd/v2-2.0.7 
Bump github.com/containerd/containerd/v2 from 2.0.5 to 2.0.7
 2025-11-07 08:16:43 +01:00
dependabot[bot]
441d16aa08 Bump github.com/containerd/containerd/v2 from 2.0.5 to 2.0.7 
Bumps [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) from 2.0.5 to 2.0.7.
- [Release notes](https://github.com/containerd/containerd/releases)
- [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md)
- [Commits](https://github.com/containerd/containerd/compare/v2.0.5...v2.0.7)

---
updated-dependencies:
- dependency-name: github.com/containerd/containerd/v2
  dependency-version: 2.0.7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-11-07 08:04:26 +01:00
Matthias Bertschy
b33f1c8cc7 Merge pull request #1887 from Mujib-Ahasan/fix-print-sarif 
fix: --format sarif logs as expected
v3.0.43 v3.0.43-rc.0 		2025-11-05 18:17:31 +01:00
Mujib Ahasan
4929af510e fix: --format sarif logs as expected 
Signed-off-by: Mujib Ahasan <ahasanmujib8@gmail.com>
 2025-11-04 20:30:10 +05:30
mandronic
f28bb11c55 removed 'procMount: Unmasked' from host-scanner daemonset definition (refs kubescape/helm-charts#711) (#1886) 
Signed-off-by: Mihail Andronic <104365774+mandronic@users.noreply.github.com>
 2025-11-03 13:40:14 +02:00
Matthias Bertschy
8bff4a02e1 Merge pull request #1884 from Mujib-Ahasan/fix-url 
fixed "404" URL issue for command $kubescape scan.
 2025-11-03 11:11:55 +01:00
Matthias Bertschy
33d1e018ec fix: update documentation links to include 'controls' path 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-11-03 07:47:37 +01:00
Mujib Ahasan
0c74599314 Test file updated 
Signed-off-by: Mujib Ahasan <ahasanmujib8@gmail.com>
 2025-10-30 01:14:25 +05:30
Mujib Ahasan
c23b85cc84 fixed 404 url issue in kubescape scan 
Signed-off-by: Mujib Ahasan <ahasanmujib8@gmail.com>
 2025-10-25 17:39:28 +05:30
Matthias Bertschy
aab10d14a2 Merge pull request #1881 from kubescape/dependabot/go_modules/github.com/nwaples/rardecode/v2-2.2.0 
Bump github.com/nwaples/rardecode/v2 from 2.1.1 to 2.2.0
 2025-10-21 09:45:29 +02:00
dependabot[bot]
2fcbe54e4e Bump github.com/nwaples/rardecode/v2 from 2.1.1 to 2.2.0 
Bumps [github.com/nwaples/rardecode/v2](https://github.com/nwaples/rardecode) from 2.1.1 to 2.2.0.
- [Commits](https://github.com/nwaples/rardecode/compare/v2.1.1...v2.2.0)

---
updated-dependencies:
- dependency-name: github.com/nwaples/rardecode/v2
  dependency-version: 2.2.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-21 09:31:33 +02:00
Matthias Bertschy
078d154ab8 chore: update runners to use ubuntu-large for improved performance 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.42 v3.0.42-rc.3 v3.0.42-rc.4 		2025-10-15 10:12:24 +02:00
Matthias Bertschy
cc9dcf827e Revert "use ubuntu-latest-16-cores runner for docker build" 
This reverts commit 76943d05fb.
v3.0.42-rc.2 		2025-10-15 10:01:39 +02:00
Matthias Bertschy
76943d05fb use ubuntu-latest-16-cores runner for docker build 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.42-rc.1 		2025-10-13 10:23:07 +02:00
Matthias Bertschy
621ac111cb Merge pull request #1880 from kubescape/hostagent-block 
fix: improve error handling in hostscanner pod validation
v3.0.42-rc.0 		2025-10-12 11:52:16 +02:00
Matthias Bertschy
3f80bce811 fix: improve error handling in hostscanner pod validation 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-10-10 16:13:43 +02:00
Matthias Bertschy
cc6895fc50 chore: update syft action to use latest version 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-10-10 15:00:35 +02:00
Matthias Bertschy
7d9d8e4b59 Merge pull request #1879 from kubescape/fix-post-release 
fix: post release action does not take tag from GITHUB_REF env var
 2025-10-08 15:57:44 +02:00
Amir Malka
f8d4bf515d fix: post release action does not take tag from GITHUB_REF env var 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2025-10-08 16:18:35 +03:00
Matthias Bertschy
774ebe4a5f bump python to 3.9 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-09-29 17:44:13 +02:00
Matthias Bertschy
45a07a8046 Merge pull request #1877 from kubescape/grype 
migrate to grype v0.99.1
v3.0.41 		2025-09-17 11:35:30 +02:00
Matthias Bertschy
ff96edae4d use grype v0.99.1 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.41-rc.0 		2025-09-17 10:11:19 +02:00
Matthias Bertschy
34b82cad27 Merge pull request #1875 from kkrypt0nn/master 
fix: Don't run scan in installation script
 2025-09-16 15:13:31 +02:00
Matthias Bertschy
1a4c979ab8 update golangci-lint config 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-09-16 13:54:23 +02:00
Matthias Bertschy
3481af4a5b bump golangci-lint action 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-09-16 11:48:02 +02:00
Ben Hirschberg
71dc7a702c Merge pull request #1876 from cx-anjali-deore/fix/policy-binding-param 
Fixed issue #1800 : Added parameterNotFoundAction in spec.paramRef while creating policy binding
 2025-09-15 10:17:52 +03:00
anjali-deore
6d92389285 Fixed issue 1800 
Signed-off-by: anjali-deore <200181980+cx-anjali-deore@users.noreply.github.com>
 2025-09-13 18:06:37 +05:30
Krypton
bd0be45c0b fix: Don't run scan in installation script 
Signed-off-by: Krypton <root@krypton.ninja>
 2025-09-12 19:54:31 +02:00
Amir Malka
7ebf078d0c fix post-release workflow (#1873) 
Signed-off-by: Amir Malka <amirm@armosec.io>
 2025-09-02 19:51:20 +03:00
Matthias Bertschy
1bd729cf83 fix go tidy 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
v3.0.40 v3.0.40-rc.1 		2025-09-02 14:45:12 +02:00
Matthias Bertschy
88b9b22bca Merge pull request #1857 from aadarsh-nagrath/default-matchers 
feat: add default matchers option to image scanning
v3.0.40-rc.0 		2025-09-02 14:25:29 +02:00
Matthias Bertschy
182162d521 gofmt 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-09-02 13:51:45 +02:00
Matthias Bertschy
1c02191bb1 Merge pull request #1866 from kubescape/tablewriter 
replace olekukonko/tablewriter with jedib0t/go-pretty
 2025-09-01 17:38:18 +02:00
Matthias Bertschy
ca66ccb33d replace olekukonko/tablewriter with jedib0t/go-pretty 
Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>
 2025-09-01 16:38:42 +02:00
Matthias Bertschy
07eda20b88 Merge pull request #1869 from htsr/fix-imagescan-use-all-targets-exceptions 
fix(imagescan): use all targets in exceptions
 2025-09-01 16:29:04 +02:00