v0.0.33

Changelog

b649588 turns Go Module on (#362)

Please ignore

Remove Darwin build from go-releaser (#361)

Should fix #360

Please ignore

This release failed to complete go-releaser, please ignore

kube-controller-manager detection and other fixes

add glog flush to write the output to a file (#329)

* add glog flush to write the output to a file

* add glog flush before exit on error and fix code comment

v0.0.29

Changelog

c379df1 Merge pull request #316 from cpt-redbeard/master
2275eea Adding OCP 3.11
ec9779f Merge pull request #313 from simar7/add-kube-bench-version
3b7438e kube-bench: add version subcommand
1d7449d Merge pull request #309 from simar7/fix-ocp-3.10-yaml
5df39ee ocp-3.10: Fix malformed yaml and improve TestControls_RunChecks
46baf8f Merge pull request #296 from aquasecurity/Config-doc
4f79d62 Merge branch 'master' into Config-doc
268fafd Merge pull request #300 from danielsagi/add_kubelet_config_path
bab1237 Merge branch 'master' into add_kubelet_config_path
d44f865 Merge pull request #256 from aquasecurity/fix-235
e3da299 Merge branch 'master' into fix-235
81f0d9c Merge branch 'master' into Config-doc
312cdb1 Merge pull request #297 from aquasecurity/Openshift-executables
0f12dca Merge branch 'master' into Openshift-executables
87820b9 Remove duplicate versions section
85849a3 Add detailed kube-bench config documentation.
43caaab added another kubelet config file to paths, in the main config yaml file. default location for gke cluster
5efb3e3 Merge pull request #298 from 030/191-master-node-doc
27df1f6 Clarification about worker nodes in managed k8s
9d0e349 [GH-191] explained that master nodes cannot be inspected in managed k8s
9d577d9 Update openshift executables
df35775 Document version-specific config files
e64f61f Add --outputfile flag for writing json results to output file (#295)
5e80f41 Merge pull request #292 from aquasecurity/config-improvements
a8c69b5 Merge branch 'master' into config-improvements
ff6443e Merge pull request #284 from yoavAqua/expected-result
ddb677b Generate expected result by strings join
d1c3e31 Genereate expected result automatically for each test
53ef773 Merge pull request #281 from yoavAqua/bugfix-no-actual-result
31019c4 Merge branch 'master' into bugfix-no-actual-result
ff427f8 Merge pull request #282 from yoavAqua/print-actual-result-of-failed-tests
91da82a Merge branch 'master' into print-actual-result-of-failed-tests
c4be2ee Merge pull request #293 from yoavAqua/save-audit-command-in-json
e7a8c14 Save the audit command when requesting json output under the "audit" key
9f9514d Merge branch 'master' into print-actual-result-of-failed-tests
e33e44b Correct debug messages
12e4829 Config file improvements
240c8ad The check's actual result property is now set to be the audit command's output
74fd7cd Merge pull request #290 from aquasecurity/config-improvements
3aa28c4 Printing the actual test result of failed tests - when a flag is raised
02d5654 Correct 1.1.14 in 1.13/master.yaml
caf3fbd Moving more config into master config file
c152088 Merge pull request #279 from leodotcloud/issue_278_remediation
c361b9b Merge branch 'master' into issue_278_remediation
b9b4d47 Merge pull request #286 from CognotektGmbH/dln/kops-paths
22e835f Reverted kubelet conf to original value
7ec1021 Added KOPS-specific paths
7c6b968 add remediation field

v0.0.27

Changelog

573136a Merge pull request #238 from Kuqd/features/autodetect-nodetype
9246be9 Merge branch 'master' into features/autodetect-nodetype
5baf81a Adds master node detection and a root command that automatically detect checks to run. The root command will run node checks and if possible master checks. I've also added some Makefile targets to improve local testing and improve the documentation.

v0.0.28

Changelog

331d64b Merge pull request #267 from aquasecurity/lizrice-patch-1
ceb4458 Tidy up a couple of things
f9d0f4a Add OCP info into the README
ab2001e Merge pull request #261 from aquasecurity/yoavrotems-patch-3
7e8dfbc Fix invalid YAML
b4419e8 Tiny typo
d05d715 Tiny typo
e70f50b update files
d30786d Merge pull request #258 from aquasecurity/fix-241
c03e958 Merge branch 'master' into fix-241
241972c Merge pull request #249 from aquasecurity/document-output
d93ed0a Merge branch 'master' into fix-241
b5f3299 Merge branch 'master' into document-output
588d75d Merge pull request #251 from aquasecurity/version-mapping
4b8a7ff Add ":" as a valid flag-value separator for tests
651b72f Merge branch 'master' into document-output
0c40532 Merge branch 'master' into version-mapping
54502c5 Merge pull request #247 from aquasecurity/yoavrotems-patch-2
df556c2 Add CIS & Kubernetes version mapping to README
488f522 Document output states
b1ce0a9 Merge branch 'master' into yoavrotems-patch-2
0f86bfc Merge pull request #246 from aquasecurity/yoavrotems-patch-1
d059196 Update master.yaml
a85e5a7 Update master.yaml

v0.0.26

Changelog

c4c0d91 Merge pull request #237 from aquasecurity/openshift
9b3628e Update openshift executable config for #236
8745df1 Merge pull request #233 from aquasecurity/clean-ocp-configs
1ead9e1 Merge branch 'master' into clean-ocp-configs
53ed68a Clean up OCP benchmark config.

v0.0.25

Includes a 1.13 directory with tests from the latest CIS Kubernetes Benchmark 1.4.0
Also includes an ocp-1.10 directory with provisional test for OpenShift - these are still under test

v0.0.24

Changelog

ba437d5 Merge pull request #206 from westonsteimel/no_runningversion_if_version_set
42f4152 Only get runningVersion if --version has not been provided
8dabb7d Merge pull request #201 from aquasecurity/yam-comment
f2062e8 Comment why /usr/bin is mounted
528bcfb Update job-node.yaml
3422b91 Add comment for why /usr/bin is mounted
86b126a Create NOTICE (#199)
827945f Merge pull request #200 from spuder/patch-1
79427e1 Merge branch 'master' into patch-1
6b9ceae True for Windows too
fbd6eb8 Merge pull request #198 from aquasecurity/mount-volumes
2a9a02f warn osx limitation
8021610 For #197 - create job YAML files that mount host volumes as needed
2eef3e8 Merge pull request #193 from maxbischoff/patch-1
791fbba Changed 1.1.14 to not fail when flag is not set
f6cab11 Merge pull request #187 from martinmosegaard/doc-kubectl-host-pid
9f28990 Merge branch 'master' into doc-kubectl-host-pid
313fe03 Merge pull request #188 from martinmosegaard/rm-space-tls-cipher
2d721ed Merge branch 'master' into rm-space-tls-cipher
799b928 Merge pull request #189 from Congelli501/patch-1
3a662b3 Merge branch 'master' into doc-kubectl-host-pid
f902b30 Merge branch 'master' into rm-space-tls-cipher
b52a882 Merge branch 'master' into patch-1
bfdd921 Merge pull request #190 from Congelli501/patch-2
af7ad90 Advise the use to mount /etc & /var read only for docker usage
ffe7ffb Type: trailing whitespace for rule text
fd120d0 Remove spaces in remediation command for tls-cipher-suites
ba03d8f Document limitation of running with kubectl
21f7902 Merge pull request #183 from s1lv3r40/master
26e28b8 Merge branch 'master' into master
ae1812b Merge pull request #185 from maxbischoff/patch-1
1534a4a Merge branch 'master' into patch-1
28a57ff Merge branch 'master' into master
41fe066 Merge pull request #186 from seslattery/seslattery-patch-1
5ca498c Fix typo on README.md
e81b785 Added missing "=" to master.yaml
645d23e fixing typos 2.1.15
52d6ac7 Merge pull request #181 from aquasecurity/config-file-location-mount
bdbbe41 Also /var
ba99850 read config files from host /etc
5fe702e Merge pull request #175 from aquasecurity/fix-2.1.8
6e80b64 Merge branch 'master' into fix-2.1.8
e1f5bb1 Merge pull request #173 from aquasecurity/fix-1.1.37
6d87880 Merge branch 'master' into fix-2.1.8
f42243e Merge branch 'master' into fix-1.1.37
d004acd Merge pull request #174 from johscheuer/correct-readme
0a53586 By default --make-iptables-util-chain is true, so PASS if this flag is not set.
4f40a11 Change binary op from and to or.
b3b3cb8 Correct readme for 1.11 example
c0f56e9 Fix check 1.1.37.
ed7f6cf Merge pull request #171 from nickperry/master
e083c8f Fixes #170