v0.0.10

What's Changed

• feat(K8S-04): mark ComputeClass as cluster-scoped resource by @siliconsheep in #128

Full Changelog: v0.0.9...v0.0.10

v0.0.9

What's Changed

• feat(policy): migrate policies to Rego v1 syntax by @siliconsheep in #127

Full Changelog: v0.0.8...v0.0.9

v0.0.8

• Remove K8S_08 check for missing CPU limits #126

v0.0.7

A bunch of new policies for Terraform and GCP.

Fixes:

• TF_GCP_43: check for host condition in IAP web member
• TF_GCP_44: prefer group/service account over user
• TF_GCP_45: GKE: deny legacy abac
• TF_GCP_46, TF_GCP_47, TF_GCP_48: CloudSQL checks, availability type, backups and auto disk resize
• TF_GCP_49: Ensure redis auth
• TF_GCP_50 & TF_GCP_51: Artifact registry public members
• TF_GCP_52: ensure point in time recovery
• TF_GCP_53: Ensure MySQL flags
• TF_GCP_54: Ensure Postgres flags

Full Changelog: v0.0.6...v0.0.7

v0.0.6

• Allow cos_containerd nodepool image_type in #96
• Accommodate for new workload_metadata_config field in #97

Full Changelog: v0.0.5...v0.0.6

v0.0.5

Check runAsRoot on both pod and container levels (#94)

If it is not defined on the pod level, we should still allow a pod
that specifies `runAsNonRoot: true` on all containers

v0.0.4

Use only one executable to build the `opa fmt` command (#92)

Use `find` instead of `grep` to exclude files and `xargs` to build the
executable command line.

v0.0.3

Exclude non-namespaced reosurces from K8S_04 (#89)

v0.0.2

Update README.md

v0.0.1

-r