Releases: deep-security/smartcheck-helm
1.2.52
Changelog
- Enhanced software composition analysis with Go language support:
Smart Check analyzes Go modules used in the image and reports vulnerabilities found in the modules. - Increased the size limit of malware scan pod’s work volume and made it configurable.
- Fixed a database query error that happened when digest was used in the listScan API.
- The Smart Check console now displays the image layer associated with a vulnerability in the details for a pie chart.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.52.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.51
Changelog
- This release added support for Harbor Registry v2.0.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.51.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.50
Changelog
- This release added support for Azure database for PostgreSQL and optimized database connection management.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.50.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.49
Changelog
- Smart Check leverages NIST's NVD vulnerability feed (via Clair) as one of its sources for vulnerability data. Previous releases of Smart Check used the NVD JSON 1.0 feed, which NIST has discontinued. In this release, the feed source has been updated to the NVD JSON 1.1 feed, so we can continue to receive updates. Without this update, Smart Check will continue to get new vulnerability updates but incorrect severity levels could be reported. All customers should install this release.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.49.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.48
Changelog
- Enhanced software composition analysis with Python language support
Smart Check analyzes Python packages installed in the image and reports the vulnerabilities found in the packages - Fixed an issue where Smart Check failed to update the license information after the license was extended.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.48.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.47
Changelog
- 'malware-scan' verbose logging is now configurable.
- Default log level of 'image-scan' container is now 'info'.
- Fixed a "Vulnerability scan failed" issue associated with corrupted rpm databases.
- Fixed an issue where "Unsupported base image" was incorrectly reported.
- Added support to deliver scan results to Trend Micro Cloud One - Container Security (private preview). This feature is disabled by default.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.47.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.46
Changelog
- Enhanced log collection script so it works better when a different namespace/release is specified
- Fixed a potential vulnerability database corruption that could happen when vuln-scan container initializes
- Fixed support for CentOS and Red Hat 6/7/8 for checklist feature
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.46.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.45
Changelog
- Support case-insensitive username at login
- Upgrade vulnerability scan engine to Clair 2.1.4 to support RHEL/CentOS8 and Ubuntu 20.04
- Fixed an issue where vulnerability severity could be underestimated
- Fixed an issue where vulnerability-scan's memory usage could run over-limit and be killed by OOM killer
- Fixed UI defect in content rule editing
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.45.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.44
Changelog
- Fixed handling of extended / renewed activation codes
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.44.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.
1.2.43
Changelog
- Fixed credential initialization for the built-in registry for pre-registry scanning
- Fixed dashboard chart display on Safari
- Improved integration with Docker Trusted Registry (DTR)
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
deepsecurity-smartcheck \
https://github.com/deep-security/smartcheck-helm/archive/1.2.43.tar.gzIMPORTANT NOTE: If you are upgrading from version 1.2.8, 1.2.9, or 1.2.10, we recommend that you use the --force parameter in the helm upgrade command. There was an error in these releases that could cause upgrading the Deployment resources to fail. Using the --force parameter will tell Helm to re-create the Deployment resources if the initial upgrade attempt fails, and should cause the overall upgrade to be successful.
If you are upgrading from version 1.2.11 or later, you can omit the --force parameter when upgrading.