Release v0.1.49

What's Changed

• Add Lance to OWNERS by @mrogers950 in #782
• Break the release process apart by @rhmdnd in #786
• Address follow-up comments to PR 786 by @rhmdnd in #789
• Add status descriptors back into CSV by @rhmdnd in #784
• Remove the deploy/eks.yaml deployment by @rhmdnd in #787
• Add network to api-resources we always fetch by @Vincent056 in #785
• e2e: Don't rely on order of inconsistent results by @jhrozek in #790
• Update build_ds_container.sh script in tutorials by @rhmdnd in #794
• Reconcile ScanSettingBindings when a TailoredProfile changes by @jhrozek in #792
• Other arch images by @gquillar in #795
• Add labels to indicate availability for other arches by @manojnkumar in #768
• Update changelog for previous PRs by @Vincent056 in #793
• e2e: Fix TestInconsistentResult by @gquillar in #798
• Increase e2e timeout by @Vincent056 in #803
• bug #2059611: scan: Only scan Linux nodes with node scans by @jhrozek in #801
• feat: variable substitution for jqfilter directive by @tmishina in #800
• e2e: Run on other architectures by @gquillar in #799
• Break README.md into separate guides by @rhmdnd in #805
• doc: Document the strictNodeScan setting better by @jhrozek in #797
• Corrected link to 'self-paced workshop' usage.md by @AdrianHammond in #808

New Contributors

• @gquillar made their first contribution in #795
• @manojnkumar made their first contribution in #768
• @AdrianHammond made their first contribution in #808

Full Changelog: v0.1.48...v0.1.49

Release v0.1.48

What's Changed

• Enable defaults per platform by @JAORMX in #760
• Add EKS deployment manifest by @JAORMX in #765
• Use go 1.17 for building container images by @JAORMX in #764
• Add extra space optional around variable during parsing by @Vincent056 in #753
• Initialize inherited selector and tolerations if null by @JAORMX in #767
• Fix the KubeletConfig Document by @Vincent056 in #759
• Use consistent markdown headings in README.md by @rhmdnd in #769
• Add conventions for writing release notes by @rhmdnd in #770
• Add a more verbose changelog for 0.1.47 by @jhrozek in #766
• Update the TailoredProfile example to include a description by @rhmdnd in #772
• Bug 2040401: fix can't find owner of 98--generated-kubelet by @Vincent056 in #775
• Render list properly in tutorial documentation by @rhmdnd in #776
• Enable runtime customization of API resource collection paths for HyperShift support by @tmishina in #750
• Bug 2040282: Fix missing checkType on some rules by @Vincent056 in #774
• Introduce process documentation for maintaining release notes by @rhmdnd in #771
• Add a Helm chart for deploying the compliance-operator by @rhmdnd in #773
• Add release notes for v0.1.48 by @rhmdnd in #777
• Make sure the helm chart.yaml changes are included in release commit by @rhmdnd in #778

New Contributors

• @rhmdnd made their first contribution in #769

Full Changelog: v0.1.47...v0.1.48

Release v0.1.47

What's Changed

• Inherit scheduling for workloads from Compliance Operator manager by @JAORMX in #756
• Add status descriptor for CRD by @Vincent056 in #754
• Add documentation for E2E test by @Vincent056 in #757
• ScanSetting: Introduce special @all role to match all nodes by @JAORMX in #755
• Bug 2033009: Remove regex checks for url-encoded content by @Vincent056 in #758
• Bug 2032420: Fix bugs where kubeletconfig gets deleted when unapplying by @Vincent056 in #761
• Add human-readable changelog for 0.1.45 and 0.1.46 by @jhrozek in #762

Full Changelog: v0.1.46...v0.1.47

v0.1.46

What's Changed

• Release v0.1.45 by @JAORMX in #745
• Log creation of default objects by @JAORMX in #747
• Fix documentation for remediation templating by @Vincent056 in #746
• Make showing NotApplicable results optional by @JAORMX in #751
• metrics: Add ComplianceSuite status gauge and alert by @mrogers950 in #749
• Support deployments on all namespaces by @JAORMX in #748

Full Changelog: v0.1.45...v0.1.46

v0.1.45

What's Changed

• Release v0.1.44 by @JAORMX in #737
• ClusterRole api-resource-collector: Add permissions to list/get machineset by @sherine-k in #739
• Bug 1965511: Implement version applicability for remediations by @JAORMX in #740
• Add support for rendering variable in rule objects by @Vincent056 in #738
• Remove permissions for aggregator to list nodes by @JAORMX in #742
• Fix Kubernetes version dependency parsing bug by @JAORMX in #741
• Add "infrastructure" to resources we always fetch by @JAORMX in #743
• Add a more verbose Changelog for the recent versions by @jhrozek in #744

Full Changelog: v0.1.44...v0.1.45

Release v0.1.44

• Add option to make scan scheduling strict/not strict
• e2e: Fix TestRulesAreClassifiedAppropriately test
• Switch to using openscap 1.3.5
• Result Server: Make nodeSelector and tolerations configurable
• Create a kubeletconfig per pool

Release v0.1.42

[0.1.42] - 2021-10-04

Changes

• add error to the result object as comment (#721)
• docs: Document the default-auto-apply ScanSetting
• Makefile: Add push-openscap-image target
• Proposal for Kubelet Config Remediation
• fix needs-review unpause pool
• add openscap image build
• Update 06-troubleshooting.md
• Remove Benchmark unit tests
• Validate that rules in tailored profile are of appropriate type
• TailoredProfiles: Allocate rules map with expected number of items
• Fix error message json representation in CRD
• aggregator: Remove MachineConfig validation
• Add description to TailoredProfile yaml

Release v0.1.41

[0.1.41] - 2021-09-20

Changes

• Specify fsgroup, user and non-root user usage in resultserver
• Gather /version when doing Platform scans
• Add flag to skip the metrics deployment
• fetch openscap version during build time
• Add instructions and check type to Rule object
• e2e: Mark logging functions as helper functions
• Makefile: Rename IMAGE_FORMAT var
• add support for multi line remediation
• Fix value-required handling.
• Use ClusterRole/ClusterRoleBinding for monitoring permissions

Release v0.1.40

[0.1.40] - 2021-09-09

Changes

• Remove tailorprofile variable selection check
• Disallow empty titles and descriptions for tailored profiles
• Restart profileparser on failures
• Skip e2e TestNodeSchedulingErrorFailsTheScan for now
• Make default scanTolerations more tolerant
• e2e: Migrate TestScanProducesRemediations to use ScanSettingBinding
• Associate variable with compliance check result
• Enable Creation of TailoredProfiles without extending existing ones
• Don't shadow an import with a variable name
• compliancescan: Fill the element and the urn:xccdf:fact:identifier for node checks
• Remove dead code
• Add supoort for remediation templating for operator

Release v0.1.39

• Allow profileparser to parse PCI-DSS references
• Add permission for operator to remediate prometheusrule objects
• Print Compliance Operator version on startup
• Update wording in TailoredProfile CRD