v1.5.3

What's Changed

• fix(github): fix oras setup by @simar7 in #322

Full Changelog: v.1.5.2...v1.5.3

v1.5.1

What's Changed

• fix(ci): setup oras by @nikpivkin in #320

Full Changelog: v1.5.0...v1.5.1

v1.5.0

What's Changed

• feat: setup tests for examples of checks by @nikpivkin in #297
• fix checks related to security groups by @nikpivkin in #298
• fix: do not check unmanaged resources by @nikpivkin in #299
• refactor(checks): Deprecate AVD-DS-0024 by @simar7 in #301
• chore(deps): bump the go_modules group with 3 updates by @dependabot in #309
• fix: use container as cause in KSV104 check by @nikpivkin in #304
• chore(deps): bump golang.org/x/crypto from 0.22.0 to 0.31.0 in /scripts in the go_modules group across 1 directory by @dependabot in #302
• chore: add removed Go checks as deprecated by @nikpivkin in #303
• refactor(checks): upgrade Rego to v1 by @nikpivkin in #310
• ci: init Rego linting by @nikpivkin in #313
• ci: add Trivy 0.57.1 and 0.58.1 to bundle testing by @nikpivkin in #311
• ci: use custom OPA to format Rego by @nikpivkin in #312
• chore(deps): bump github.com/aws-cloudformation/rain from 1.19.0 to 1.21.0 in the common group across 1 directory by @dependabot in #314
• test: add assertions to AVD-AWS-0179 test cases by @nikpivkin in #317
• fix(test): add testcases for AVD-OPNSTK-0003 and AVD-OPNSTK-0004 by @nikpivkin in #318
• fix(checks): respect PodSecurityContext for containers by @nikpivkin in #315
• fix(checks): dedupe KSV030 results by @nikpivkin in #316
• ci: enable strict mode by default in opa check by @nikpivkin in #319
• fix: align CIDR check rules with their title by @nikpivkin in #307

Full Changelog: v1.4.0...v1.5.0

v.1.5.2

Full Changelog: v1.5.1...v.1.5.2

v1.4.0

What's Changed

• refactor(checks): migrate Kubernetes network to Rego by @nikpivkin in #294
• chore(deps): bump the common group with 4 updates by @dependabot in #293
• chore: remove Go checks by @nikpivkin in #274
• test: use testing/fstest instead of memoryfs by @nikpivkin in #296
• feat: add examples of custom checks by @nikpivkin in #295

Full Changelog: v1.3.1...v1.4.0

v1.3.1

What's Changed

• do not include yaml examples in checks bundle by @nikpivkin in #292

Full Changelog: v1.3.0...v1.3.1

v1.3.0

What's Changed

• Revert "test(bundle): Disable canary builds" by @simar7 in #282
• fix: fix metadata retrieval from iac types by @nikpivkin in #286
• test: unify docker and k8s tests by @nikpivkin in #285
• ci: push bundle to Docker Hub registry by @nikpivkin in #291
• chore: disable ryuk by @nikpivkin in #290
• chore: update push-bundle command by @nikpivkin in #288
• fix(checks): check only clusters in AVD-AWS-0343 by @nikpivkin in #287
• chore: store examples in YAML by @nikpivkin in #271
• chore: remove AVD-AWS-0134 by @nikpivkin in #289

Full Changelog: v1.2.2...v1.3.0

v1.2.2

What's Changed

• fix: do not use deny in rule name by @nikpivkin in #283

Full Changelog: v1.2.1...v1.2.2

v1.2.1

Full Changelog: v1.2.0...v1.2.1

v1.2.0

What's Changed

• fix(checks): add aliases to Rego checks by @nikpivkin in #269
• fix(azure): properly check ports in AVD-AZU-0058 and AVD-AZU-0050 by @nikpivkin in #268
• fix(checks): correctly check the addresses count in the AVD-NIF-0001 rule by @aokumasan in #267
• Produce a manifest with a non-zero config by @cbandy in #270
• feat(checks): add secrets leak check in Dockerfile by @nikpivkin in #265
• fix(ci): exclude Trivy for dependabot by @nikpivkin in #273
• refactor(checks): improve metadata retrieval by @nikpivkin in #261
• chore(deps): bump mvdan.cc/sh/v3 from 3.8.0 to 3.9.0 in the common group across 1 directory by @dependabot in #276
• fix(k8s): downgrade KSV117 severity from High to Medium by @nikpivkin in #275
• refactor: remove references to __defsec_metadata by @nikpivkin in #278
• feat(checks): Deprecate remaining PSP checks by @simar7 in #277
• fix(checks): handle of unresolvable values by @nikpivkin in #279
• Allow the ADD instruction with HTTP, HTTPS and Git URLs by @nicwortel in #281
• chore(deps): bump mvdan.cc/sh/v3 from 3.9.0 to 3.10.0 in the common group by @dependabot in #280

New Contributors

• @aokumasan made their first contribution in #267
• @cbandy made their first contribution in #270
• @nicwortel made their first contribution in #281

Full Changelog: v1.1.0...v1.2.0