v0.3.0

0.3.0 (2024-05-24)

This release focuses on development workflows for validations as well as the initial capability to generate OSCAL artifacts. Components now allow being composed using external validations and/or import using the import-component-definitions field.

⚠ BREAKING CHANGES

• #388 update types to use pointers (#410)
• #367 compiling external/remote validations (#384)

refactor

• #388 update types to use pointers (#410) (9c51d56)

Features

• #367 compiling external/remote validations (#384) (8bb42b0)
• oscal: merge on write consolidation (#407) (ef2f9f5)
• compose: add ability to pull and compose import component defs (#406) (ddf919a)
• generate: add generate command and initial component generation (#401) (918299a)
• dev: added Observation logging to dev validate (#396) (c32027e)
• dev: dev validate with optional resources file input (#394) (f034a97)
• validate: validation store/cache (#373) (751982f)

Bug Fixes

• deps: consolidate use of goyaml pkg (#422) (d1abbcc)
• deps: controller runtime (#379) (7d3aec3)
• dev: updated result condition to match satisfaction logic (#400) (5feda9d)
• validate: validation errors mapped to observations (#405) (39e5ebd)
• validate: fix order of assessment-results results (#437) (a8db208)

Miscellaneous

• actions: #420 update release process with release-please (#421) (a372df0)
• deps: bump golang.org/x/net from 0.22.0 to 0.23.0 (#378) (8088bd0)
• deps: Update actions/checkout action to v4.1.3 (#382) (08eed39)
• deps: Update actions/download-artifact action to v4.1.6 (#376) (2982b36)
• deps: Update actions/download-artifact action to v4.1.7 (#387) (92064e6)
• deps: Update actions/upload-artifact action to v4.3.2 (#377) (f575f82)
• deps: Update actions/upload-artifact action to v4.3.3 (#383) (26f1f32)
• deps: update anchore/sbom-action action to v0.16.0 (#426) (a2063a5)
• deps: update github/codeql-action action to v3.25.6 (#425) (9ef1703)
• deps: update golang to version 1.22.3 (#423) (aa8cab7)
• deps: update kubernetes packages to v0.30.1 (#417) (e47a04d)
• deps: Update module github.com/defenseunicorns/go-oscal to v0.3.2 (#380) (03aa969)
• deps: update module github.com/defenseunicorns/go-oscal to v0.4.0 (#429) (4ff7775)
• deps: update module github.com/defenseunicorns/go-oscal to v0.4.1 (#435) (4570658)
• deps: update module github.com/hashicorp/go-version to v1.7.0 (#438) (4f6de9b)
• deps: update module sigs.k8s.io/e2e-framework to v0.4.0 (#419) (890a7d8)
• renovate: update config to handle conventional commit titles (#428) (5f4139a)

What's Changed

• chore(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 by @dependabot in #378
• deps Update actions/upload-artifact action to v4.3.2 by @renovate in #377
• refactor(validate): validation store/cache by @mike-winberry in #373
• Fix controller runtime by @brandtkeller in #379
• deps Update module github.com/defenseunicorns/go-oscal to v0.3.2 by @renovate in #380
• deps Update actions/checkout action to v4.1.3 by @renovate in #382
• deps Update actions/upload-artifact action to v4.3.3 by @renovate in #383
• deps Update actions/download-artifact action to v4.1.6 by @renovate in #376
• feat!: #367 compiling external/remote validations by @mike-winberry in #384
• deps Update actions/download-artifact action to v4.1.7 by @renovate in #387
• Dev validate with optional resources file input by @meganwolf0 in #394
• Added Observation logging to dev validate by @meganwolf0 in #396
• updated result condition by @meganwolf0 in #400
• feat(generate): Add generate command and initial component generation by @brandtkeller in #401
• deps Update module github.com/open-policy-agent/opa to v0.64.1 by @renovate in #392
• deps Update anchore/sbom-action action to v0.15.11 by @renovate in #395
• deps Update actions/setup-go action to v5.0.1 by @renovate in #404
• deps Update actions/checkout action to v4.1.4 by @renovate in #391
• deps Update dependency markdownlint-cli to v0.40.0 by @renovate in #398
• deps Update github/codeql-action action to v3.25.3 by @renovate in #365
• Validation errors mapped to observations by @meganwolf0 in #405
• feat(oscal): merge on write consolidation by @brandtkeller in https://github.com/defenseunicorns/lula/pu...

v0.2.1

What's Changed

Another release packed full of updates. This release focuses on refactoring the validation structure and solidifying foundations around intended workflow and separation between OSCAL functionality and Validation functionality.

Note: There are breaking changes - which are currently to be expected as Lula is no yet generally-available - More discovery and learning to do!

This release also includes the support of Kyverno as a provider for evaluation of policy against data collected for adherence review.

Features

• feat: integrate kyverno by @KhaledEmaraDev in #326
• feat: Added command to get resources from validation manifest by @meganwolf0 in #325
• feat: Initial refactor for domains and providers by @meganwolf0 in #358
• feat(dev): #70 add dev validate cmd by @mike-winberry in #339
• feat: Establish workflow for lula validation identifiers by @brandtkeller in #361
• feat: #298 Add the ability to pull validations from external sources (currently only backmatter) by @mike-winberry in #357

Fixes

• Fix: set default CLI_VERSION to unset when no tags are present by @brandtkeller in #330
• Fix: Use Kyverno ValidatingPolicy Structure by @brandtkeller in #343
• fix: remove homebrew for future updates by @brandtkeller in #371

Documentation

• docs: add triage label automation by @CloudBeard in #333
• docs: Add dependency update guidance to repository by @brandtkeller in #331
• docs: ADR for validation yaml by @meganwolf0 in #354

Chores

• chore: add labels to renovate pull requests by @brandtkeller in #336
• chore: add security.md by @CloudBeard in #340
• chore: #46 add issue and pr templates by @mike-winberry in #363

Dependency Updates

• deps Update dependency hugo-extended to ^0.124.0 by @renovate in #323
• deps Update anchore/sbom-action action to v0.15.10 by @renovate in #334
• deps(go-oscal): upgrade to v0.3.0 by @mike-winberry in #317
• deps Update module github.com/defenseunicorns/go-oscal to v0.3.1 by @renovate in #351
• deps Update module github.com/open-policy-agent/opa to v0.63.0 by @renovate in #338
• deps Update dependency go to v1.22.2 by @renovate in #355
• deps Update module sigs.k8s.io/controller-runtime to v0.17.3 by @renovate in #359
• deps Update github/codeql-action action to v3.24.10 by @renovate in #316

New Contributors

• @KhaledEmaraDev made their first contribution in #326

Full Changelog: v0.1.0...v0.2.1

v0.1.0

What's Changed

This release comes after organizing a team around the project and much discovery in the world of compliance automation.

Features

• Support for targeting named Kubernetes resources by @brandtkeller in #253
• Configurable Payload output and additional observations by @meganwolf0 in #267
• New lula tools upgrade command to automate OSCAL version upgrades by @mike-winberry in #295
• Ability to scrape resource data fields by @meganwolf0 in #297
• Validation version constraint checking by @meganwolf0 in #307

Fixes

• Fix: cleanup E2E generated test files by @brandtkeller in #285
• Fix: Convert mapstructure decode to yaml unmarshall to type by @brandtkeller in #309

Documentation

• chore: enable draft for release process by @brandtkeller in #310
• chore: codeowners for core team by @brandtkeller in #313
• chore: Updating readme and oscal file to reflect a better demo by @brandtkeller in #230

Dependency Updates

• deps Upgrade go-oscal package. by @mike-winberry in #283
• deps Update dependency linkinator to v6.0.4 by @renovate in #212
• deps Update dependency prettier to v3.2.2 by @renovate in #213
• deps Update module sigs.k8s.io/controller-runtime to v0.17.0 by @renovate in #214
• deps Update dependency prettier to v3.2.4 by @renovate in #215
• deps Update kubernetes packages to v0.29.1 by @renovate in #219
• deps Update module github.com/pterm/pterm to v0.12.75 by @renovate in #218
• deps Update dependency autoprefixer to v10.4.17 by @renovate in #216
• deps Update actions/upload-artifact action to v4.2.0 by @renovate in #221
• deps Update anchore/sbom-action action to v0.15.4 by @renovate in #220
• deps Update github/codeql-action action to v3.23.1 by @renovate in #217
• deps Update anchore/sbom-action action to v0.15.5 by @renovate in #224
• deps Update module github.com/open-policy-agent/opa to v0.61.0 by @renovate in #231
• deps Update module github.com/pterm/pterm to v0.12.76 by @renovate in #227
• deps Update github/codeql-action action to v3.23.2 by @renovate in #233
• deps Update actions/upload-artifact action to v4.3.0 by @renovate in #225
• deps Update anchore/sbom-action action to v0.15.6 by @renovate in #236
• deps Update dependency markdownlint-cli to v0.39.0 by @renovate in #235
• deps Update anchore/sbom-action action to v0.15.7 by @renovate in #238
• deps Update dependency hugo-extended to ^0.122.0 by @renovate in #234
• deps Update dependency @taplo/cli to ^0.7.0 by @renovate in #240
• deps Update anchore/sbom-action action to v0.15.8 by @renovate in #239
• deps Update module github.com/pterm/pterm to v0.12.77 by @renovate in #241
• deps Update github/codeql-action action to v3.24.0 by @renovate in #242
• deps Update dependency prettier to v3.2.5 by @renovate in #243
• deps Update module github.com/pterm/pterm to v0.12.78 by @renovate in #244
• deps Update actions/download-artifact action to v4.1.2 by @renovate in #245
• deps Update actions/upload-artifact action to v4.3.1 by @renovate in #246
• Updating codeowner files to be more granular by @brandtkeller in #250
• deps Update module sigs.k8s.io/controller-runtime to v0.17.1 by @renovate in #251
• deps Update module github.com/pterm/pterm to v0.12.79 by @renovate in #252
• deps Update github/codeql-action action to v3.24.1 by @renovate in #256
• deps Update dependency go to v1.22.0 by @renovate in #248
• deps Update github/codeql-action action to v3.24.3 by @renovate in #259
• deps Update kubernetes packages to v0.29.2 by @renovate in #258
• deps Update module sigs.k8s.io/controller-runtime to v0.17.2 by @renovate in #260
• deps Update github/codeql-action action to v3.24.4 by @renovate in #266
• deps Update dependency hugo-extended to ^0.123.0 by @renovate in #264
• deps Update github/codeql-action action to v3.24.5 by @renovate in #268
• deps Update actions/download-artifact action to v4.1.3 by @renovate in #277
• deps Update dependency hugo-extended to v0.123.6 by @renovate in #269
• deps Update module github.com/open-policy-agent/opa to v0.62.0 by @renovate in #282
• deps Update github/codeql-action action to v3.24.6 by @renovate in #279
• deps Update actions/download-artifact action to v4.1.4 by @renovate in #286
• deps Update anchore/sbom-action action to v0.15.9 by @renovate in #291
• deps Update module github.com/open-policy-agent/opa to v0.62.1 by @renovate in #293
• deps Update dependency hugo-extended to v0.123.7 by @renovate in #288
• deps Update dependency autoprefixer to v10.4.18 by @renovate in #287
• deps Update dependency go to v1.22.1 by @renovate in #303
• deps Update github/codeql-action action to v3.24.7 by @renovate in #304
• deps Update kubernetes packages to v0.29.3 by @renovate in #314

New Contributors

• @mike-winberry made their first contribution in #283
• @meganwolf0 made their first contribution in #267

Full Changelog: v0.0.2...v0.1.0

v0.0.2

What's Changed

• deps Update dependency go to v1.21.6 by @renovate in #198
• deps Update actions/download-artifact action to v4.1.1 by @renovate in #199
• fix: 197 add input-file flag validation for validate command by @kislerdm in #205
• Fix: assessment result file provenance by @brandtkeller in #209
• deps Update actions/upload-artifact action to v4.1.0 by @renovate in #207
• deps Update dependency prettier to v3.2.1 by @renovate in #208
• fix: add detection/error for inability to connect to cluster by @brandtkeller in #211

New Contributors

• @kislerdm made their first contribution in #205

Full Changelog: v0.0.1...v0.0.2

v0.0.1

What's Changed

• Feat: vision draft v1 by @brandtkeller in #1
• Mock implementation by @brandtkeller in #13
• Yaml by @corang in #17
• Kyverno policy by @brandtkeller in #18
• Added a demo and steps to follow in readme by @Michael-Kruggel in #20
• report logic by @corang in #21
• Added rule to check for mtls value by @Michael-Kruggel in #22
• Feat: implement running against static manifests by @brandtkeller in #25
• Cleanup branch additions by @brandtkeller in #28
• Updated oscal component file for bigbang istio by @brandtkeller in #29
• Fixed typo in readme by @liquidsaul in #31
• Fix URL format for component's project page. by @aj-stein-nist in #32
• preforming rename of the CLI and project by @brandtkeller in #34
• Add a Makefile by @Overflow0xFFFF in #37
• Arch documentation by @brandtkeller in #40
• Adding thoughts around lula required or important foundation by @brandtkeller in #41
• feat: add generate command by @hennersz in #42
• Kyverno v1.9.0 update by @brandtkeller in #44
• Replace oscal component definition types with go-oscal generated types by @lucasrod16 in #51
• Migrate execute command to validate command by @brandtkeller in #52
• Adding first actual ADR around OSCAL data format by @brandtkeller in #57
• Policy UUID relation by @brandtkeller in #60
• ADR for multiple provider support and OPA validator by @brandtkeller in #71
• Oscal baseline by @brandtkeller in #76
• feat: Initial-code-scan by @CloudBeard in #79
• Feat: Opa provider + Kubernetes data source + E2E test by @brandtkeller in #82
• feat: initial renovate setup by @CloudBeard in #85
• Website framework by @bdfinst in #84
• Codeowners update by @brandtkeller in #86
• Fix: explicit workflow permissions by @brandtkeller in #88
• Add Netlify config by @bdfinst in #89
• Lula payload location by @brandtkeller in #93
• Fix: troubleshooting netlify failures in CI by @brandtkeller in #99
• chore: Add Lula favicon by @bdfinst in #100
• Lula report generation by @brandtkeller in #98
• feat: add ability to call API as datasource for Lula validation by @btlghrants in #101
• Update actions/checkout action to v4.1.1 by @renovate in #104
• Update github/codeql-action action to v2.22.5 by @renovate in #105
• Update ossf/scorecard-action action to v2.3.1 by @renovate in #106
• Update module github.com/spf13/cobra to v1.8.0 by @renovate in #108
• Update dependency hugo-extended to ^0.120.0 by @renovate in #107
• Update dependency linkinator to v6 by @renovate in #109
• Update dependency go to v1.21.4 by @renovate in #110
• Update dependency prettier to v3.1.0 by @renovate in #111
• fix: append single observations to correct slice by @brandtkeller in #112
• Update github/codeql-action action to v2.22.6 by @renovate in #113
• Update kubernetes packages to v0.28.4 by @renovate in #115
• Update github/codeql-action action to v2.22.7 by @renovate in #116
• fix: simplify api test dependencies by @brandtkeller in #117
• deps Update dependency linkinator to v6.0.2 by @renovate in #122
• deps Update github/codeql-action action to v2.22.8 by @renovate in #123
• Resource collections by @brandtkeller in #124
• Fix: Jeff probably doesn't need to be required on every PR by @brandtkeller in #129
• Lula tools command by @brandtkeller in #128
• deps Update module github.com/open-policy-agent/opa to v0.59.0 by @renovate in #131
• deps Update github.com/defenseunicorns/go-oscal digest to a6c1aa2 by @renovate in #132
• Update README.md by @jasonpatrickellykrause in #137
• fix: should fix getting started command in readme by @CloudBeard in #140
• Feat: add linting command to lula tools by @brandtkeller in #136
• Fix: demo workflow and README content by @brandtkeller in #142
• deps Update github.com/defenseunicorns/go-oscal digest to 4b22d3f by @renovate in #141
• deps Update github.com/defenseunicorns/go-oscal digest to a64b5c9 by @renovate in #143
• deps Update github.com/defenseunicorns/go-oscal digest to bc005d0 by @renovate in #145
• Update docs theme by @brandtkeller in #144
• Remove roboto by @bdfinst in #148
• deps Update dependency go to v1.21.5 by @renovate in #149
• deps Update dependency postcss-cli to v11 by @renovate in #150
• deps Update actions/setup-go action to v5 by @renovate in #152
• deps: update go-oscal to use the released tag by @brandtkeller in #151
• deps Update github/codeql-action action to v2.22.9 by @renovate in #155
• Validate -a flag with result appending feature by @brandtkeller in #154
• deps Update dependency hugo-extended to ^0.121.0 by @renovate in #159
• adding version command by @dgershman in #164
• deps Update dependency hugo-extended to v0.121.1 by @renovate in #165
• deps Update dependency markdownlint-cli to v0.38.0 by @renovate in #167
• deps Update dependency prettier to v3.1.1 by @renovate in #166
• Feat: Aggregate by control-id by @brandtkeller in #163
• feat: Add initial contributing file by @CloudBeard in #170
• deps Update github/codeql-action action to v2.22.10 by @renovate in #173
• Feat: add evaluation for assessment results files by @brandtkeller in #160
• deps Update github/codeql-action action to v3 by @renovate in #175
• deps Update kubernetes packages to v0.29.0 by @renovate in #176
• deps Update actions/upload-artifact action to v4 by @renovate in #177
• feat: Add Initial release process by @CloudBeard in #171
• deps Update actions/upload-artifact action to v4 by @renovate in #181
• deps Update actions/download-artifact action to v4 by @renovate in #180
• deps Update actions/download-artifact action to v4.1.0 by @renovate in #183
• deps Update module github.com/open-policy-agent/opa to v0.60.0 by @renovate in #187
• deps Update github/codeql-action action to v3.22.12 by @renovate in #188
• deps Update dependency linkinator to v6.0.3 by @renovate in #189
• deps Update anchore/sbom-action action to v0.15.2 by @renovate in #190
• Feat: Support Eventual consistency for Kubernetes by @brandtkeller in #179
• Feat: common logging integration by @b...