v0.2.6

KubeLinter v0.2.5

Changes in this version: 0.2.5...0.2.6

Features

• template: add forbidden-annotation (#248)
• docs: Use YAML for parameters in documentation (#247)
• Add a check to enforce node affinities being defined (#265)
• Adding basic support for HorizontalPodAutoscaler resources from autoscalingv2Beta1 (#271)

Bug Fixes

• fix command name for shell completion (#231)
• Update the latest-tag check to capture the case where no tags are specified (#233)
• Use go install for installing binaries (#235)
• Ports check: Assume protocol is TCP if not specified (#230)
• Return non-zero exit status on no valid objects (#209)

v0.2.5

KubeLinter v0.2.5

Changes in this version: 0.2.4...0.2.5

Features

• Recognize batch/v1 CronJobs (#225)

Bug Fixes

• 'deprecated-service-account-field' should pass if both 'serviceAccount' and 'serviceAccountName' are set (#218)
• Fix object paths when Helm chart was renamed (#226)
• Correctly detect the replica count and selector for DeploymentConfig objects (#219)

v0.2.4

KubeLinter v0.2.4

Changes in this version: 0.2.3...0.2.4

Features

• Add AllowList parameter to the existing latestTag check (#199)
• Flag pods that are not isolated by a NetworkPolicy (#206)

Bug Fixes

• Ensure that the "results" field is populated in SARIF output even if there are no lint errors (#214)

v0.2.3

KubeLinter v0.2.3

Changes in this version: 0.2.2...0.2.3

Features

• Add template for imagePullPolicy checks (#202 )
• Add check for improper-container-image-tag (#191)
• Add template for update strategy and a basic check (#190)
• Add templates/checks for CIS Benchmarks for RBAC, secret, and namespace (#188)
• Add check for minimum number of replicas (#185)

Bug Fixes

v0.2.2

KubeLinter v0.2.2

Changes in this version: 0.2.1...0.2.2

Features

• Add about a dozen new templates and built-in checks based on Docker CIS benchmarks (#170)
• Add SARIF output (#160)

Bug Fixes

• Make the default service account check not fail when AutomountServiceAccountToken is false (#166)

v0.2.1

KubeLinter v0.2.1

Changes in this version: 0.2.0...0.2.1

Features

• Add JSON output (#131)

Bug Fixes

• Fix regression where kube-linter lint would fail on Windows (#162)

v0.2.0

KubeLinter v0.2.0

Changes in this version: 0.1.6...0.2.0

Features

• Add OpenShift DeploymentConfig Schema (#153)

General Improvements

• Update Kube library dependencies to 1.20 (#138)
• Update to Go 1.16 (#151)
• Add default names for config files (#148)

Bug Fixes

• Fix bug where some options in the config file were not honoured (#150)

v0.1.6

KubeLinter v0.1.6

Changes in this version: 0.1.5...0.1.6

Features

• Added support for packaged (TGZ) Helm charts (#121)
• Allowed specification of the topology key for the pod anti-affinity check (#112)

General Improvements

• Added variant of image that uses an Alpine base image (#118)
• Supported use of CLI flags to specify certain config options (#109)
• Moved a lot of code from internal to pkg to facilitate use as a library (#122)

v0.1.5

KubeLinter v0.1.5

Changes in this version: 0.1.4...0.1.5

Features

• Added new default check to prohibit containers to run with NEW_RAW capability. With this also added a new check template verify-container-capabilities to allow users to flexibly validate container capabilities (#104)

General Improvements

• Added unit test framework for testing templates (#111)
• Fixed several documentation related issues, fixed several broken links and added more instructions to README (#94, #95, #98, #102, etc.)

v0.1.4

KubeLinter v0.1.4

Changes in this version: 0.1.3...0.1.4

Features

• Added new default check to flag deployments exposing port 22, commonly reserved for SSH access
• Added a documentation site at docs.kubelinter.io

General Improvements

• Formalized issue and bug templates
• Disable pushing docker image by default. Apply label push-docker-image to the PR to push to docker hub.

Bugs Fixed

• Fixed the matching of the namespace in the danglingservice check (#83)