Skip to content

Releases: zegl/kube-score

v1.19.0

01 Oct 09:41
Compare
Choose a tag to compare

Changelog

  • 20f248e Add junit as a valid output format
  • 0fd0730 Build fix
  • ff6886b Corepack on vercel
  • fa48e3a Create FUNDING.yml
  • 321e14e Create tea.yaml
  • 536c54b Format junit
  • d80d828 Go 1.23.1
  • 602715d Split install and build steps
  • 2f97ffe Update README_PROBES.md
  • a0a0f48 Update to Goreleaser 2
  • 4c0e41b Vite / React powered website
  • 95589f8 WASM / Vercel docs
  • baf9346 Web styling
  • 8641157 WebAssemby powered website
  • dda35f8 add exclude id for horizontalpodautoscaler-replicas
  • 688e2d3 all: extendable externally usable API
  • 77a6bda all: go 1.22 toolchain
  • 75e2f93 build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0
  • 8ac7341 build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0
  • e263b89 build(deps): bump golang.org/x/term from 0.16.0 to 0.17.0
  • c51991e build(deps): bump golang.org/x/term from 0.17.0 to 0.18.0
  • 331e300 build(deps): bump golang.org/x/term from 0.18.0 to 0.19.0
  • 71bf4dc build(deps): bump golang.org/x/term from 0.19.0 to 0.20.0
  • fb19eb5 build(deps): bump golang.org/x/term from 0.20.0 to 0.21.0
  • 63f52be build(deps): bump golang.org/x/term from 0.21.0 to 0.22.0
  • 0fb2a2c build(deps): bump golang.org/x/term from 0.22.0 to 0.23.0
  • b5a7d86 build(deps): bump golang.org/x/term from 0.23.0 to 0.24.0
  • ef2f2a4 build(deps): bump k8s.io/api from 0.29.1 to 0.29.2
  • e993e1a build(deps): bump k8s.io/api from 0.29.2 to 0.29.3
  • f82e691 build(deps): bump k8s.io/api from 0.29.3 to 0.29.4
  • d9007f5 build(deps): bump k8s.io/api from 0.29.4 to 0.30.0
  • 439e205 build(deps): bump k8s.io/api from 0.30.0 to 0.30.1
  • 8764c7f build(deps): bump k8s.io/api from 0.30.1 to 0.30.2
  • abe6d44 build(deps): bump k8s.io/api from 0.30.2 to 0.30.3
  • 52ba4e6 build(deps): bump k8s.io/api from 0.30.3 to 0.31.0
  • 1c6127f build(deps): bump k8s.io/api from 0.31.0 to 0.31.1
  • 4f1ef27 ci: test with go 1.22
  • 43306b8 pnpm in repo root
  • 4177485 render/junit: add new output
  • 810be65 score/hpa: added a check for hpa min replicas > 1
  • cfc141f web: add header links

v1.18.0

05 Feb 14:13
0fb5f66
Compare
Choose a tag to compare

What's Changed

  • chore: remove refs to deprecated io/ioutil by @testwill in #546
  • score/disruptionbudget: output comment when namespace doesn't match by @cayla in #549
  • docs: add release documentation by @zegl in #551
  • score/disruptionbudget: improved error message for PDB found but in wrong namespace by @zegl in #552
  • renderer/human: show file names in case of error or warning by @zegl in #553
  • Align container-ephemeral-storage-request-and-limit to container-resources by @ReuDa in #573
  • ci/go: bump Go version from 1.19 to 1.21 and fix CI style by @ryo-yamaoka in #572
  • Support HorizontalPodAutoscaler in autoscaling/v2 by @ReuDa in #574
  • Fix: create valid sarif results output file by @ppawlowski in #575
  • score/probes: set score.Skipped if pod not targeted by service by @zegl in #577
  • Add deployment checks by @BigGold1310 in #576
  • build(deps): bump golang.org/x/term from 0.15.0 to 0.16.0 by @dependabot in #579
  • build(deps): bump k8s.io/api from 0.29.0 to 0.29.1 by @dependabot in #580
  • scorecard: fix enabling of optional tests with CLI flag by @zegl in #584

New Contributors

Full Changelog: v1.17.0...v1.18.0

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.18.0 (⭐ muiltiarch image! – This image contains Helm 3 and Kustomize).
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

v1.17.0

06 Jul 07:43
Compare
Choose a tag to compare

Changelog

  • 4f4d94b Add new --all-default-optional flag to enable all optional tests (@kmarteaux)
  • 2c61f70 Additional test case for multiple ignore annotations (@kmarteaux)
  • ba23a2d Fix implied ignore annotations block in isEnabled function (@kmarteaux)
  • 3bf6bc5 [#495] add updated score.go. update podtopologyspreadconstraints package name (@kmarteaux)
  • f5d2695 [#495] implement feature request: topologySpreadConstraints (@kmarteaux)
  • f0e1c0d rendered: fix tests for human output
  • c965b17 renderer: override color support logic to add colors on GitHub Actions
  • 07e5b94 score: generic check functions
  • c41dec1 score: generic pod checker functions
  • 048aa2f score: generic register meta check

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.17.0 (⭐ muiltiarch image! – This image contains Helm 3 and Kustomize).
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

v1.16.1

16 Dec 12:54
Compare
Choose a tag to compare

Changelog

  • dad8eae scorecard: trim whitespace in annotation keys

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.16.1 (⭐ new muiltiarch image! – This image contains Helm 3 and Kustomize).
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

v1.16.0

12 Dec 11:29
Compare
Choose a tag to compare

Changelog

This change contains no changes to the scoring in kube-score. This release is made to fix some issues in the Docker images pushed in v1.15.0 where no linux/arm64 images where pushed (#502). This has been fixed by migrating to a multiarch image for both linux/amd64 and linux/arm64. The -helm, -heml3, and -kustomize images are no longer pushed, instead the new multiarch image contains both Helm 3 and Kustomize binaries.

  • 00a51e7 all: support Kubernetes v1.26 APIs
  • 98fd2b1 builds: add reminder to add push latest
  • 2c08121 builds: multi-arch docker image
  • de4fbec go: update to Go 1.19 semantics

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.16.0 (⭐ new muiltiarch image! – This image contains Helm 3 and Kustomize).
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

v1.15.0

06 Dec 17:11
Compare
Choose a tag to compare

Changes

  • #489 Adds support for the kube-score/ignore and kube-score/enable annotation on child resources such as Deployment and StatefulSet Pod Templates. The "child" annotations will override an annotations set on the root object.
  • #474 Implement New Rule: CronJob resource requires Pod restartPolicy set to Never or OnFailure
  • #469 Check to see if a container port name exceeds 15 characters
  • #462 Bump to kustomize v4.5.4
  • #461 Add sarif output option to documentation
  • #450 Container ephemeral storage tests did not honor "kube-score/ignore": "container-resources" annotation because the tests were implemented apart from the extant CPU and memory container tests. Fix addresses this oversight by noting the "container-resources" annotation implies also ignoring the "container-ephemeral-storage-request-and-limit" tests.
  • #439 Update k8s.io/api to v0.23.4

This release contains contributions from: Guilhem Bonnefille (@gbonnefille), Gustav Westling (@zegl), Kenneth Martau (@kmarteaux), Lorenzo Gallucci (@log2), Mads Jensen (@atombrella), ryo-yamaoka (@ryo-yamaoka)

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.15.0
  • Download the image from Docker Hub with Helm or Kustomize pre-installed: zegl/kube-score:v1.15.0-helm3, zegl/kube-score:v1.15.0-helm, zegl/kube-score:v1.15.0-kustomize
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

v1.14.0

17 Feb 10:09
3d63924
Compare
Choose a tag to compare

Changes

  • #431 Implements an optional Pod container ports test. Checks to ensure a ports containerPort value isn't missing and name ports are unique.
  • #429 Implement new Pod container resource checks for ephemeral storage. Default tests for request and limit settings. Optional test to ensure matching ephemeral storage request and limit values.

This release contains contributions from: Gustav Westling (@zegl), Jaanki (@Jaanki), Mads Jensen (@atombrella), Stephen (@stephengroat), and kmarteaux (@kmarteaux)!

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.14.0
  • Download the image from Docker Hub with Helm or Kustomize pre-installed: zegl/kube-score:v1.14.0-helm3, zegl/kube-score:v1.14.0-helm, zegl/kube-score:v1.14.0-kustomize
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

🌻 Sponsors

kube-score is proudly sponsored by Sturdy — real-time code collaboration!

Docker images

  • docker pull zegl/kube-score:v1.14.0-kustomize
  • docker pull zegl/kube-score:latest-kustomize
  • docker pull zegl/kube-score:v1.14.0-helm3
  • docker pull zegl/kube-score:latest-helm3
  • docker pull zegl/kube-score:v1.14.0
  • docker pull zegl/kube-score:v1.14.0-arm64 (:star: – new!)
  • docker pull zegl/kube-score:v1.14.0-helm
  • docker pull zegl/kube-score:latest-helm
  • docker pull zegl/kube-score:latest-arm64 (:star: – new!)

v1.13.0

28 Oct 13:34
d1ad91d
Compare
Choose a tag to compare

Changes

  • #404 Remove the deprecated “Container Security Context” check. It has been deprecated for three releases, and disabled by default since the last release. See https://github.com/zegl/kube-score/blob/master/README_SECURITYCONTEXT.md for more information.
  • #399 Add support for more topology kets in the hasPodAntiAffinity test
  • #397 Upgrade Helm3 to v3.7.0
  • #396 Add check for PodDisruptionBudget with no policy
  • #389 Fix panic for Ingresses with empty http blocks . This affected the networking/v1beta1 and extensions/v1beta1 versions of Ingress.

This release contains contributions from: Gustav Westling (@zegl), Maxim Samoilov (@Nitive), Nathan (@nbanmp), Tom Hayward (@kd7lxl).

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.13.0
  • Download the image from Docker Hub with Helm or Kustomize pre-installed: zegl/kube-score:v1.13.0-helm3, zegl/kube-score:v1.13.0-helm, zegl/kube-score:v1.13.0-kustomize
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

🌻 Sponsors

kube-score is proudly sponsored by Sturdy — Software collaboration for teams.

Docker images

  • docker pull zegl/kube-score:v1.13.0-kustomize
  • docker pull zegl/kube-score:latest-kustomize
  • docker pull zegl/kube-score:v1.13.0-helm3
  • docker pull zegl/kube-score:latest-helm3
  • docker pull zegl/kube-score:v1.13.0
  • docker pull zegl/kube-score:v1.13.0-helm
  • docker pull zegl/kube-score:latest-helm

v1.12.0

28 Aug 20:51
82810c4
Compare
Choose a tag to compare

Changes

  • #387 Upgrade alpine to 3.14.2. Upgrade Go to 1.17. Upgrade Helm 2 to v2.17.0. Upgrade Helm 3 to v3.6.3.
  • #386 As announced in v1.10.0: container-security-context is now disabled by default (is now opt-in, and will be removed in v1.13.0), The new checks container-security-context-user-group-id, container-security-context-privileged and container-security-context-readonlyrootfilesystem are now enabled by default. See SECURITYCONTEXT.md for more.
  • #385 Add Deployment selector labels check
  • #380 Add StatefulSet selector labels check

This release contains contributions from: Eugene Venter, Gustav Westling

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.12.0
  • Download the image from Docker Hub with Helm or Kustomize pre-installed: zegl/kube-score:v1.12.0-helm3, zegl/kube-score:v1.12.0-helm, zegl/kube-score:v1.12.0-kustomize
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

🌻 Sponsors

kube-score is proudly sponsored by Sturdy — Software collaboration for teams.

v1.11.0

19 Apr 19:00
3d04fb9
Compare
Choose a tag to compare

Changes

  • Support for Kubernetes v1.21 and the new versions of the PodDisruptionBudget and CronJob APIs
  • #362 Support policy/v1 of PodDisruptionBudget. If --kubernetes-version is set to v1.21 or later, policy/v1 will be recommended over policy/v1beta1
  • #361 Support batch/v1/CronJob, and recommend to use the batch/v1 version if --kubernetes-version is set to v1.21 or later

Delayed deprecation of container-security-context

In v1.10.0 the deprecation of container-security-context was announced. In the initial announcement the flip to the new checks was scheduled to happen in v1.11 followed by the deletions in v1.12. This did not happen in this release, and the flip and deletion have been postponed to v1.12 and v1.13 respectively.

Download

  • Download the binaries from the GitHub release page
  • Download the image from Docker Hub: zegl/kube-score:v1.11.0
  • Download the image from Docker Hub with Helm or Kustomize pre-installed: zegl/kube-score:v1.11.0-helm3, zegl/kube-score:v1.11.0-helm, zegl/kube-score:v1.11.0-kustomize
  • Download from homebrew: brew install kube-score/tap/kube-score
  • Download with krew: kubectl krew install score

Docker images

  • docker pull zegl/kube-score:v1.11.0
  • docker pull zegl/kube-score:latest
  • docker pull zegl/kube-score:v1.11.0-helm
  • docker pull zegl/kube-score:latest-helm
  • docker pull zegl/kube-score:v1.11.0-helm3
  • docker pull zegl/kube-score:latest-helm3
  • docker pull zegl/kube-score:v1.11.0-kustomize
  • docker pull zegl/kube-score:latest-kustomize