Skip to content

v0.9.0

Choose a tag to compare

View all tags
@Danny-Wei Danny-Wei released this 13 Nov 04:13
· 35 commits to release-0.9 since this release
v0.9.0
6dace13
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Features

  • Enabled enforce/complain modes for BPF enforcer profiles to align with AppArmor (#250)
  • Added BehaviorModeling mode support to the BPF enforcer (#250)
  • Added an operation field to violation logs generated by the BPF enforcer (#250)
  • Renamed the eventType field in violation logs to enforcer (#250)
  • Added a qualifiers field to the BPF enforcer's custom rule interfaces (#257)
  • Added shorthand forms for supported mount flags in the BPF enforcer, aligning with AppArmor (#250)
  • Enabled policy-advisor to generate policy templates using BPF enforcer behavior data (#261)

Refactors

  • Renamed profile and dynamic result fields in CRD (#255)
  • Standardized all Seccomp violation logs to use the AUDIT|ALLOWED action (#253)
  • Adjusted all violation logs to be recorded at the warn level (#263)
  • Removed zerolog time format configuration from JSON log format setup (#266)
  • Standardized indentation for all AppArmor rules to improve readability (#265)
  • Dependency upgrades: Updated Go to 1.24 and the ebpf package to v0.19.0 (#250)
  • Updated base image and environment variables in the Dockerfile (#250, #251)

Fixes

  • Fixed profile generation logic of BPF enforcer to use correct rule pattern constants (#252)
  • Addressed potential null pointer references during BPF event conversion (#254)
Assets 2
Loading