Releases: Ankurk99/auto-policy-discovery
Releases · Ankurk99/auto-policy-discovery
v0.0.8
Changelog
- 4f96675 Fix for container ns,podname setup in discovery-engine
- 933e05a Fix for ns override issue
- ba8dacd Fix for ns,podname setup in discovery-engine for container ns
- dac1962 Fix for policy namespace,pod getting overwritten
- cb9d5d1 Merge pull request accuknox#527 from Ankurk99/systemd
- 07d7334 Merge pull request accuknox#528 from seswarrajan/dev
- e942d52 package discovery-engine as a systemd service
v0.0.7
v0.0.6
v0.0.5
Changelog
- a38c97d Add all options for insight
- 103b012 Add clustername,namespace,labels on creating convert_sys_policy script and grpc endpoint
- a015f77 Add createTime and updateTime in db for systempolicy
- 7d47699 Add fromsource to policy filter
- fca8607 Add n/w path as part of observability data
- d770356 Add recursive to matchdriectories of kubearmor policy
- 9a17500 Added flag to disable code flows related to observability
- 6464bdb Added namespace filter config for network policies
- aa72391 Added new gRPC method to fetch system observability data
- 0869dc3 Added script to docker
- b57487f Added support for network insight
- 2d37dcd Added support for network insight (accuknox#458)
- c248474 Added syspolicydb update
- 7aaae44 Adding kubearmor file fromsource paths to process paths in kubearmor policies
- d7bb811 Adding updatedtime,latest field to sys_policy tbl
- e72d162 Adding wrapper for DB libs
- f8648a4 Addressed Revew comments -- Handling script inputs
- 09e0e16 Addressed review comments
- 56b8a4a Addressed review comments
- f1b2c2f Basic support for VM policy discovery
- a5d30e5 Clear WPFS DB based on duration (hr, min, sec)
- 37db7a0 Clear sys based on input search options
- 47d6c84 Containername is empty in kubearmor alerts (accuknox#471)
- 9c21b63 Convert wpfs to systempolicy and update in sys-policy DB
- fa721ab Created a new grpc endpoint for Observability
- e06c0a4 Define a new config for observability
- 68cec90 Disabling observability
- 884ced5 Discover kubearmor policies on per process (accuknox#455)
- 7e2bc15 Enable observability
- 939a8c5 Enabled observability and modified observability mechanism
- 63746b8 Enabling incoming/outgoing server connections on summary
- d5797fb Extract svc/pod IP from cluster info
- 78c3fa1 Fix - Cilium Policy Formatting issue
- f2dd4ba Fix for database locked issue. Close DB after usage
- 0e84a12 Fix for nw/sys policy dir path read from config
- 7762961 Fix gosec issue
- 69f8b3b Fix policy name overriding and remove clustername and containername from policy (accuknox#463)
- 03f12e9 Fixed compilation error
- 6a75b7d Fixed compilation issue
- 9627aeb Fixed review comments
- a7b6abb Fixing namespace error issue in summary
- 25f62af Fixing namespace error issue in summary (accuknox#474)
- 063fd77 GH-actions: Fixes
- 7d33584 Handling mutex lock/unlock
- 6174cdf Handling/Adding preconfigured rule for Kubearmor policy (accuknox#506)
- ed90814 Insight data script update with latest rpc name
- fb73525 Merge branch 'accuknox:dev' into dev
- 2733dea Merge branch 'accuknox:dev' into dev
- 65f4c93 Merge branch 'accuknox:dev' into dev
- 9e23c4b Merge branch 'accuknox:dev' into dev
- 97ace5e Merge branch 'accuknox:dev' into dev
- 8643a02 Merge branch 'accuknox:dev' into dev
- 59821de Merge branch 'dev' into dev
- 43fd276 Merge branch 'dev' into dev
- 511de6a Merge branch 'dev' into dev
- b706c92 Merge branch 'dev' into discover
- 620964f Merge pull request accuknox#375 from nyrahul/dev
- 8db9ffa Merge pull request accuknox#376 from nyrahul/dev
- 4ff63ef Merge pull request accuknox#382 from nyrahul/dev
- 0ae0ac5 Merge pull request accuknox#383 from nyrahul/dev
- 3f25618 Merge pull request accuknox#384 from nyrahul/dev
- 86a8496 Merge pull request accuknox#386 from seswarrajan/dev
- 99fdcfe Merge pull request accuknox#387 from nyrahul/dev
- 9375712 Merge pull request accuknox#388 from seswarrajan/dev
- 3b7b650 Merge pull request accuknox#389 from seswarrajan/dev
- 4165f9d Merge pull request accuknox#390 from nyrahul/dev
- dabbd6a Merge pull request accuknox#391 from nyrahul/dev
- 2cb7377 Merge pull request accuknox#392 from seswarrajan/dev
- 714edbe Merge pull request accuknox#393 from nyrahul/dev
- a15c808 Merge pull request accuknox#394 from nyrahul/dev
- 7494045 Merge pull request accuknox#396 from nyrahul/dev
- 38be92a Merge pull request accuknox#397 from seswarrajan/dev
- 9edc62b Merge pull request accuknox#399 from seswarrajan/dev
- 4bbdc76 Merge pull request accuknox#402 from nyrahul/dev
- 2c39c07 Merge pull request accuknox#403 from seswarrajan/dev
- 05088b3 Merge pull request accuknox#404 from nyrahul/dev
- 34e9ebb Merge pull request accuknox#406 from nyrahul/dev
- 97f9fab Merge pull request accuknox#410 from seswarrajan/dev
- c258354 Merge pull request accuknox#411 from nyrahul/dev
- 48c6dff Merge pull request accuknox#421 from Ankurk99/dev
- d047739 Merge pull request accuknox#425 from nyrahul/AK-dep-update
- bb633eb Merge pull request accuknox#426 from Ankurk99/dev
- 21232da Merge pull request accuknox#427 from nyrahul/AK-dep-update
- 6f7c967 Merge pull request accuknox#435 from nyrahul/dev
- c1ef95e Merge pull request accuknox#436 from nyrahul/dev
- 11fd4af Merge pull request accuknox#438 from seswarrajan/dev
- 6b6ac2b Merge pull request accuknox#439 from wazir-ahmed/icmp-rule
- e5ed464 Merge pull request accuknox#440 from seswarrajan/dev
- 0d42625 Merge pull request accuknox#441 from SujithKasireddy/dev
- 02be617 Merge pull request accuknox#442 from nyrahul/dev
- f3b3359 Merge pull request accuknox#443 from SujithKasireddy/dev
- bfb72ec Merge pull request accuknox#444 from nyrahul/dev
- f9aca5f Merge pull request accuknox#445 from Ankurk99/dev
- 9a86d59 Merge pull request accuknox#447 from nyrahul/dev
- d6bf8a6 Merge pull request accuknox#448 from wazir-ahmed/fromEntities-refactor
- c4747a4 Merge pull request accuknox#450 from nyrahul/dev
- c9449f2 Merge pull request accuknox#451 from wazir-ahmed/deduplication
- 7a17738 Merge pull request accuknox#452 from Ankurk99/discover
- 5f11c93 Merge pull request accuknox#453 from Ankurk99/discover
- 5df1489 Merge pull request accuknox#454 from wazir-ahmed/fqdn-policy
- 1319af2 Merge pull request accuknox#456 from wazir-ahmed/http-policy
- 411a056 Merge pull request accuknox#459 from nyrahul/dev
- 2dfcd5d Merge pull request accuknox#460 from ErenYeager713/dev
- f046f9a Merge pull request accuknox#461 from seswarrajan/dev
- 9a46f4f Merge pull request accuknox#462 from seswarrajan/dev
- 4bb349a Merge pull request accuknox#466 from wazir-ahmed/ns-filter
- 6c305cb Merge pull request accuknox#469 from seswarrajan/dev
- b39366f Merge pull request accuknox#473 from seswarrajan/dev
- 7cc27a2 Merge pull request accuknox#475 from seswarrajan/dev
- 4f90d2d Merge pull request accuknox#476 from seswarrajan/dev
- a4d4844 Merge pull request accuknox#477 from seswarrajan/dev
- 15316e2 Merge pull request accuknox#478 from seswarrajan/dev
- 04add34 Merge pull request accuknox#479 from seswarrajan/dev
- a037340 Merge pull request accuknox#480 from nyrahul/dev
- c5e734e Merge pull request accuknox#481 from seswarrajan/dev
- 4b736ce Merge pull request accuknox#483 from seswarrajan/dev
- 5a3ab42 Merge pull request accuknox#484 from seswarrajan/dev
- 4528f01 Merge pull request accuknox#485 from nyrahul/dev
- 0cd905b Merge pull request accuknox#486 from wazir-ahmed/no-tocidr
- 597108f Merge pull request accuknox#487 from seswarrajan/dev
- a0f4743 Merge pull request accuknox#488 from wazir-ahmed/obs-flag
- e4c0da0 Merge pull request accuknox#489 from nyrahul/dev
- bb42e47 Merge pull request accuknox#490 from nyrahul/dev
- 74d59ad Merge pull request accuknox#491 from seswarrajan/dev
- ed0e0bb Merge pull request accuknox#494 from seswarrajan/dev
- 75fae7a Merge pull request accuknox#500 from seswarrajan/dev
- a734af1 Merge pull request accuknox#508 from wazir-ahmed/is-reply
- 17c11c2 Merge pull request accuknox#510 from seswarrajan/dev
- 99f8628 Merge pull request accuknox#511 from nyrahul/dev
- 9c9a5e2 Merge pull request accuknox#515 from wazir-ahmed/pulsar-consumer
- 2d37ef9 Merge pull request accuknox#516 from wazir-ahmed/icmp-dedup
- f776978 Merge pull request accuknox#517 from wazir-ahmed/cilium-vm-2
- 092332b Merge pull request accuknox#519 from seswarrajan/dev
- 5961f8a Merge pull request accuknox#521 from seswarrajan/dev
- f4ace5a Modified fsset to json in wpfs DB (accuknox#507)
- f0f23ad Modified fsset to use recordsepartor in wpfs DB (accuknox#509)
- 2aaa024 Modified grpc protobuf definition and implementation
- c95aad3 Modified int to bigint in schema for createdtime and updatedtime
- 37ca753 Modified json output formatting
- d224c1b Modified observe script
- a05acb6 Modified output json format
- d45056e Modified protobuf
- 7257838 Modified sys obs type
- 07603e0 Modified time conversion format
- e798ced Modify k3s installation command
- 0553ca8 Modify k3s installation script (accuknox#520)
- 58c830e Modify k3s installation script to use 15sec time delay instead of waiting for pod to be active/running
- 082058b Modify observability code to handle DB insert/update in a single query
- 7564b94 Modifying deployment to support latest observability configuration
- 13b761d Modifying json import to support ignoring empty json values (accuknox#470)
- 33c4731 MySQL/Sqlite fixes
- d8f03ec Naming convention of system policy for VM
- 0f58e2f Network policy | For out-of-cluster access, use toEntities:world instead of toCIDR
- f8ea295 New entry for duration in cleardb
- fbb094f Observability changes for handling db update/insert in a single function
- 6183300 Observability data json formatting
- 935ddc7 Observability support for displaying system/network logs summary
- d91dbe2 Observe_sys_policy script modified to support no inputs as well
- 97d4ce9 Paths gets appended to processes of policy when requesting policies per namespace (accuknox#504)
- f32f03f Policy discovery for vm
- 4d3cdeb Policy proc path update from file from source
- d7fd857 Policyname hash to include containername for name creation
- 778209a Policyname is created based on hash value + policyname appended to policy filename
- 59b20b8 Populate sysdb on sys based n/w policies
- b4f2a82 Provide usage options in script
- ca1ada3 Redesigned System Policy Discovery Module
- 3b53941 Remove duplicate string from final path strings
- 1e65b08 Remove duplicates on summary
- c062773 Revert "changed kafka subscribe model"
- 2c994de Revert config changes
- 7c1b9c3 Review comments addressed
- 37e8fdb SQLite fix for observability
- fa7a26e Script modification
- 1c3b1c6 Support for network policy discovery in VMs
- 28dac55 Support for new feed-consumer plugin - Apache Pulsar
- 17eace8 Update README.md
- d43cfae Update STABLE-RELEASE
- d4ba852 Update cilium to existing version
- d37be9c Update dev-config.yaml
- d9ef667 Update src/libs/common.go
- 864311d Update syspolicy DB on new wpfs data entry
- 87a0778 Updated fields
- db205d5 Using clustername in policy name generation has instead of containername
- d618ee7 VM policy discovery changes
- aa1d64f Write policies to file on calling convert_net_policy and convert_sys_policy
- 3c2ff93 add karmor discover filters
- b05e51d add path aggregation...