Skip to content

Releases: CheckPointSW/charts

2.34.0: Image Assurance Docker Hub Registry Scanning, AppArmor for K8s 1.30+, affinity improvement

18 Dec 17:57
40fce60
Compare
Choose a tag to compare
  • Image Assurance 2.38.0: Docker Hub Container Registry Scanning support
  • Support AppArmor for Kubernetes 1.30+
  • Remove duplicate node affinity for some environments
  • Enhancements: Inventory 1.16.0, Flow Logs 0.16.0, Admission Control policy 1.10.0, Admission Control enforcer 2.14

Full Changelog: 2.33.1...2.34.0

2.33.1: fixed Flow Logs agents deployment on ARM64 nodes

17 Nov 09:18
1696e99
Compare
Choose a tag to compare

Fixed Flow Logs agents deployment on ARM64 nodes

Full Changelog 2.33.0...2.33.1

2.33.0: Image Assurance 2.37.0: Quay Registry scanning support

22 Oct 06:17
edc5235
Compare
Choose a tag to compare

Image Assurance 2.37.0:

  • Quay Container Registry scanning support
  • By default scan more images in base image repositories of Container Registries

Full Changelog: 2.32.0...2.33.0

Helm 2.32.0: ARM64 support, credentials update improvement

19 Sep 07:14
8e060f6
Compare
Choose a tag to compare
  • ARM64 support: ARM64 support is now available for all agents, except Runtime Protection blade and Shiftleft environment
  • ECS scanner: supporting customer certificates for Container Registries scan from ECS via CG_REG_CA_CERTIFICATE environment variable
  • Labels Unification: standardized labeling across all components
  • Agents restart on credential change: all agents will be restarted when credentials or cluster ID is updated
  • Telemetry Enhancements

Agents versions

  • Inventory 1.15.0
  • Image Assurance 2.36.0
  • Admission Control: Enforcer 2.13.0, Policy 1.9.0
  • Runtime Policy 1.9.0
  • Flow Logs (Intelligence) 0.15.0

Full Changelog: 2.31.0...2.32.0

2.31.0: Runtime Protection daemon 1.16.3: docker with cgroups v2 support

03 Jul 12:31
a566514
Compare
Choose a tag to compare

Runtime Protection daemon 1.16.3:

  • add cgroupv2 support for docker container runtime

Full Changelog: 2.30.0...2.31.0

2.30.0: GKE Image Streaming, enhancements, RKE2 and K3s support

16 Jun 15:11
7ef7653
Compare
Choose a tag to compare

Image Assurance 2.30.0

  • Added GKE Image Streaming support for GKE 1.28.9 and higher
  • Enhancement in case of containerd service restart

Runtime Protection 1.16.2

  • Added Rancher RKE2 and K3s support

Admission Control Enforcer 2.12.0

  • Enhancement

All

  • Added some standard K8s and helm labels

Full Changelog: 2.29.0...2.30.0

2.29.0: Runtime Protection daemon 1.16.2: enhancements

08 Apr 10:45
81456a0
Compare
Choose a tag to compare

Runtime Protection daemon 1.16.2

  • Improved File Reputation Blade for Reduced False Positives
  • Improved memory management

Full Changelog: 2.28.0...2.29.0

2.28.0: GitHub Registry, reduce URLs for Image Assurance

04 Mar 08:46
c27589c
Compare
Choose a tag to compare

Image Assurance 2.29.0:

  • Release Github Container Registry Scanning support
  • Reduced the number of URLs that need to be accessed by the agents (relevant for Scan Engine Version 2.0.0 only). CloudGuard agents must have connectivity to these region-specific URLs:
Region URLs accessed by Image Assurance agents
United States (US) https://api-cpx.dome9.com, https://api.dome9.com
Europe (EU) https://api-cpx.eu1.dome9.com, https://api.eu1.dome9.com
Australia (AU) https://api-cpx.ap2.dome9.com, https://api.ap2.dome9.com
Canada (CA) https://api-cpx.cace1.dome9.com, https://api.cace1.dome9.com
India (IN) https://api-cpx.ap3.dome9.com, https://api.ap3.dome9.com
Singapore (SG) https://api-cpx.ap1.dome9.com, https://api.ap1.dome9.com

Security enhancements - all agents:

  • Image Assurance 2.29.0
  • Admission Control: Enforcer 2.11.0 & Policy 1.8.0
  • Inventory 1.14.0
  • Flow-logs 0.14.0
  • Runtime Policy 1.8.0

Full Changelog: 2.27.1...2.28.0

2.27.1: helm adjustments for GKE Autopilot

21 Feb 10:52
34eb279
Compare
Choose a tag to compare

When onboarding on GKE autopilot, please append the following to the helm command: --set platform=gke.autopilot

Full Changelog: 2.27.0...2.27.1

2.27.0: Runtime Protection: K8s events on terminating container

30 Jan 12:31
e15d784
Compare
Choose a tag to compare

Runtime Protection daemon 1.14.0

  • Added creating Kubernetes events when a container is terminated by CloudGuard Runtime Protection
  • Changed ClusterRole permissions to enable Kubernetes events publishing

Full Changelog: 2.26.0...2.27.0