Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package kubescape for openSUSE:Factory
checked in at 2023-10-19 22:49:35
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/kubescape (Old)
and /work/SRC/openSUSE:Factory/.kubescape.new.1945 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "kubescape"
Thu Oct 19 22:49:35 2023 rev:12 rq:1118836 version:2.9.2
Changes:
--------
--- /work/SRC/openSUSE:Factory/kubescape/kubescape.changes 2023-09-06
19:03:32.306991375 +0200
+++ /work/SRC/openSUSE:Factory/.kubescape.new.1945/kubescape.changes
2023-10-19 22:52:00.624640285 +0200
@@ -1,0 +2,50 @@
+Thu Oct 19 07:33:15 UTC 2023 - ka...@b1-systems.de
+
+- Update to version 2.9.2:
+ * add more missing permissions for actions
+ * set log to error
+ * rm if statement
+ * replace driver name
+ * actions needs write on id-token in pr-scanner
+ * bump deps for vulnerabilities
+ * fixing GH actions permissions
+ * use distroless debug as entrypoint.sh requires a shell
+ * remove extra permissions on GH action
+ * add ArtifactHub to README
+ * add FOSSA badge to README
+ * build windows exec without libgit
+ * use go-gitlog as an alternative to git2go (#1393)
+ * use ControlConfigInputs, deprecate ConfigInputs (#1419)
+ * add top level permissions: read-all for openssf
+ * correct security-insights stage -> status
+ * Fix in the README for changelog name
+ * Adding project security and governance as per maintainer
+ decision
+ * Update README.md
+ * Create scorecard.yml
+ * Bump golang.org/x/net from 0.14.0 to 0.17.0 in /httphandler
+ * use correct variable for IMAGE_TAG
+ * drop build tags for tests (will soon deprecate them)
+ * add missing dependency on retag in binary-build
+ * Removed the Codesee workflow
+ * force docker-build in absence of release label
+ * Adding check-secret to build image wf
+ * Bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4
+ * split failedPath to deletePaths and reviewPaths (#1402)
+ * add Openssf badge (#1400)
+ * Support control cluster from cli (#1391)
+ * disable rate limiting for storage client
+ * Separate docker builds for kubescape and kubescape-cli (#1390)
+ * Save scan results in storage and support scanning a deleted
+ resource (#1376)
+ * add new line (#1389)
+ * fix: format headers (#1383)
+ * remove ARMO server url
+ * feat: darken table borders
+ * fix setting context name in httphandler
+ * revert e2e test branch (#1373)
+ * print up until 4 imgs
+ * Update installation.md to add instructions to install a
+ previous version via SH
+
+-------------------------------------------------------------------
Old:
----
kubescape-2.9.1.tar.gz
New:
----
kubescape-2.9.2.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ kubescape.spec ++++++
--- /var/tmp/diff_new_pack.Veq3Tu/_old 2023-10-19 22:52:01.920687290 +0200
+++ /var/tmp/diff_new_pack.Veq3Tu/_new 2023-10-19 22:52:01.920687290 +0200
@@ -19,7 +19,7 @@
%define __arch_install_post export NO_BRP_STRIP_DEBUG=true
Name: kubescape
-Version: 2.9.1
+Version: 2.9.2
Release: 0
Summary: Tool providing a multi-cloud K8s single pane of glass
License: Apache-2.0
@@ -32,8 +32,7 @@
Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of
glass, including risk analysis, security compliance, RBAC visualizer and image
vulnerabilities scanning. Kubescape scans K8s clusters, YAML files, and HELM
charts, detecting misconfigurations according to multiple frameworks (such as
the NSA-CISA , MITRE ATT&CK®), software vulnerabilities, and RBAC
(role-based-access-control) violations at early stages of the CI/CD pipeline,
calculates risk score instantly and shows risk trends over time. It became one
of the fastest-growing Kubernetes tools among developers due to its easy-to-use
CLI interface, flexible output formats, and automated scanning capabilities,
saving Kubernetes users and adminsâ precious time, effort, and resources.
Kubescape integrates natively with other DevOps tools, including Jenkins,
CircleCI, Github workflows, Prometheus, and Slack, and supports multi-cloud K8s
deployments like EKS, GKE, and AKS.
%prep
-%setup -q
-%setup -q -T -D -a 1
+%autosetup -p 1 -a 1
%build
go build \
++++++ _service ++++++
--- /var/tmp/diff_new_pack.Veq3Tu/_old 2023-10-19 22:52:01.948688306 +0200
+++ /var/tmp/diff_new_pack.Veq3Tu/_new 2023-10-19 22:52:01.952688451 +0200
@@ -3,7 +3,7 @@
<param name="url">https://github.com/armosec/kubescape</param>
<param name="scm">git</param>
<param name="exclude">.git</param>
- <param name="revision">v2.9.1</param>
+ <param name="revision">v2.9.2</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param>
<param name="versionrewrite-pattern">v(.*)</param>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.Veq3Tu/_old 2023-10-19 22:52:01.972689177 +0200
+++ /var/tmp/diff_new_pack.Veq3Tu/_new 2023-10-19 22:52:01.972689177 +0200
@@ -1,6 +1,6 @@
<servicedata>
<service name="tar_scm">
<param name="url">https://github.com/armosec/kubescape</param>
- <param
name="changesrevision">076aa7f8fe66e183f61b4023ea1f9b85751d0704</param></service></servicedata>
+ <param
name="changesrevision">e4110837c70807de7c37cca69f422f5951249d64</param></service></servicedata>
(No newline at EOF)
++++++ kubescape-2.9.1.tar.gz -> kubescape-2.9.2.tar.gz ++++++
/work/SRC/openSUSE:Factory/kubescape/kubescape-2.9.1.tar.gz
/work/SRC/openSUSE:Factory/.kubescape.new.1945/kubescape-2.9.2.tar.gz differ:
char 12, line 1
++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/kubescape/vendor.tar.gz
/work/SRC/openSUSE:Factory/.kubescape.new.1945/vendor.tar.gz differ: char 5,
line 1
