v0.10.0

[gardener/diki]

✨ New Features

• [USER] The disa-kubernetes-stig ruleset rules for virtualgarden and managedk8s providers can now be retried if their results contain a known Errored message. by @AleksandarSavchev [#259]
• [USER] A new rule option kubeProxyDisabled is added to rules that check many components, which contain the kube-proxy. Setting this option to true would skip only the kube-proxy check in the rule. Defaults to true. by @AleksandarSavchev [#264]
• [USER] Glossary has been added to html reports that explains rule statuses. by @AleksandarSavchev [#270]
• [USER] For gardener provider's disa-kubernetes-stig ruleset, rule execution can now be retried if their checkResults contains a known Errored message. by @AleksandarSavchev [#257]
• [USER] A new args field is introduced for rulesets, where ruleset specific arguments can be set. by @AleksandarSavchev [#257]
• [USER] For gardener provider's disa-kubernetes-stig ruleset, the args field has been enhanced with maxRetries setting, which sets the number of maximum retries for rule runs. Defaults to 1. by @AleksandarSavchev [#257]
• [USER] A bug causing rules that check files on nodes to error with could not find files in foo when there were no regular files in foo was fixed. by @AleksandarSavchev [#252]
• [USER] The disa-kubernetes-stig ruleset config for virtualgarden and managedk8s providers has been enhanced with maxRetries setting, which sets the number of maximum retries for rule runs. Defaults to 1. by @AleksandarSavchev [#259]

🏃 Others

• [USER] Rules that cannot find kube-proxy pod now return Errored check result. by @AleksandarSavchev [#255]
• [USER] Rules that cannot find specific pod now return Errored check result. by @AleksandarSavchev [#261]
• [USER] SimplePodExecutor now retries command timeouts and server errors. by @AleksandarSavchev [#260]
• [USER] Improved disa-kubernetes-stig ruleset rule 242442 for gardener provider to check pod images per namespace. by @AleksandarSavchev [#265]

Docker Images

• diki-ops: europe-docker.pkg.dev/gardener-project/releases/gardener/diki-ops:v0.10.0
• diki: europe-docker.pkg.dev/gardener-project/releases/gardener/diki:v0.10.0