Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package starboard for openSUSE:Factory checked in at 2025-09-18 21:11:27 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/starboard (Old) and /work/SRC/openSUSE:Factory/.starboard.new.27445 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "starboard" Thu Sep 18 21:11:27 2025 rev:21 rq:1305741 version:0.15.27 Changes: -------- --- /work/SRC/openSUSE:Factory/starboard/starboard.changes 2025-06-26 11:40:36.600986190 +0200 +++ /work/SRC/openSUSE:Factory/.starboard.new.27445/starboard.changes 2025-09-18 21:12:39.892458008 +0200 @@ -1,0 +2,8 @@ +Thu Sep 18 08:57:09 UTC 2025 - Johannes Kastl <opensuse_buildserv...@ojkastl.de> + +- Update to version 0.15.27: + * release: prepare v0.15.26 + * Fixed vulns by bumping up go to 1.24.6 (#1424) + * release: prepare v0.15.26 (#1421) + +------------------------------------------------------------------- Old: ---- starboard-0.15.26.obscpio New: ---- starboard-0.15.27.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ starboard.spec ++++++ --- /var/tmp/diff_new_pack.Z4TVaE/_old 2025-09-18 21:12:40.764494665 +0200 +++ /var/tmp/diff_new_pack.Z4TVaE/_new 2025-09-18 21:12:40.768494833 +0200 @@ -1,7 +1,7 @@ # # spec file for package starboard # -# Copyright (c) 2025 SUSE LLC +# Copyright (c) 2025 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,14 +17,14 @@ Name: starboard -Version: 0.15.26 +Version: 0.15.27 Release: 0 Summary: Kubernetes-native security toolkit License: Apache-2.0 URL: https://github.com/aquasecurity/starboard Source: starboard-%{version}.tar.gz Source1: vendor.tar.gz -BuildRequires: go >= 1.24.4 +BuildRequires: go1.24 >= 1.24.6 %description Starboard integrates security tools into the Kubernetes environment, so that ++++++ _service ++++++ --- /var/tmp/diff_new_pack.Z4TVaE/_old 2025-09-18 21:12:40.800496178 +0200 +++ /var/tmp/diff_new_pack.Z4TVaE/_new 2025-09-18 21:12:40.804496346 +0200 @@ -3,7 +3,7 @@ <param name="url">https://github.com/aquasecurity/starboard</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v0.15.26</param> + <param name="revision">v0.15.27</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> <param name="changesgenerate">enable</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.Z4TVaE/_old 2025-09-18 21:12:40.828497355 +0200 +++ /var/tmp/diff_new_pack.Z4TVaE/_new 2025-09-18 21:12:40.828497355 +0200 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/aquasecurity/starboard</param> - <param name="changesrevision">60fe70caa2f19b29b92adfca594af7afd0df0b04</param></service></servicedata> + <param name="changesrevision">e16fe4d17096b335fba5ec5ece8d1e59c39f13b8</param></service></servicedata> (No newline at EOF) ++++++ starboard-0.15.26.obscpio -> starboard-0.15.27.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/ISSUE_TEMPLATE/bug_report.md new/starboard-0.15.27/.github/ISSUE_TEMPLATE/bug_report.md --- old/starboard-0.15.26/.github/ISSUE_TEMPLATE/bug_report.md 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/ISSUE_TEMPLATE/bug_report.md 1970-01-01 01:00:00.000000000 +0100 @@ -1,20 +0,0 @@ ---- -name: Bug report -about: Tell us about a problem you are experiencing ---- - -**What steps did you take and what happened:** - -[A clear and concise description of what the bug is, and what commands you ran.] - -**What did you expect to happen:** - -**Anything else you would like to add:** - -[Miscellaneous information that will assist in solving the issue.] - -**Environment:** - -- Starboard version (use `starboard version`): -- Kubernetes version (use `kubectl version`): -- OS (macOS 10.15, Windows 10, Ubuntu 19.10 etc): diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/ISSUE_TEMPLATE/config.yml new/starboard-0.15.27/.github/ISSUE_TEMPLATE/config.yml --- old/starboard-0.15.26/.github/ISSUE_TEMPLATE/config.yml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/ISSUE_TEMPLATE/config.yml 1970-01-01 01:00:00.000000000 +0100 @@ -1,8 +0,0 @@ -blank_issues_enabled: false -contact_links: - - name: Feature request - url: https://github.com/aquasecurity/starboard/discussions/new?category_id=18526499 - about: Share ideas for new features - - name: Ask a question - url: https://github.com/aquasecurity/starboard/discussions/new?category_id=18526498 - about: Ask questions and discuss with other community members diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/dependabot.yml new/starboard-0.15.27/.github/dependabot.yml --- old/starboard-0.15.26/.github/dependabot.yml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/dependabot.yml 1970-01-01 01:00:00.000000000 +0100 @@ -1,15 +0,0 @@ -# To get started with Dependabot version updates, you'll need to specify which -# package ecosystems to update and where the package manifests are located. -# Please see the documentation for all configuration options: -# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates - -version: 2 -updates: - - package-ecosystem: github-actions - directory: / - schedule: - interval: weekly - - package-ecosystem: gomod - directory: / - schedule: - interval: weekly diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/pull_request_template.md new/starboard-0.15.27/.github/pull_request_template.md --- old/starboard-0.15.26/.github/pull_request_template.md 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/pull_request_template.md 1970-01-01 01:00:00.000000000 +0100 @@ -1,13 +0,0 @@ -## Description - -## Related issues -- Close #XXX - -Remove this section if you don't have related PRs. - -## Checklist -- [ ] I've read the [guidelines for contributing](https://github.com/aquasecurity/starboard/blob/main/CONTRIBUTING.md) to this repository. -- [ ] I've added tests that prove my fix is effective or that my feature works. -- [ ] I've updated the [documentation](https://github.com/aquasecurity/starboard/tree/main/docs) with the relevant information (if needed). -- [ ] I've added usage information (if the PR introduces new options) -- [ ] I've included a "before" and "after" example to the description (if the PR is a user interface change). diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/workflows/build.yaml new/starboard-0.15.27/.github/workflows/build.yaml --- old/starboard-0.15.26/.github/workflows/build.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/workflows/build.yaml 1970-01-01 01:00:00.000000000 +0100 @@ -1,232 +0,0 @@ ---- -# This workflow is triggered on push or pull request for the main branch. -# It runs tests and various checks to validate that the proposed changes -# will not introduce any regression after merging the code to the main branch. -name: Build -on: - push: - branches: - - main - paths-ignore: - - '.github/ISSUE_TEMPLATE/*.md' - - '*.md' - - 'docs/**' - - 'mkdocs.yml' - - 'LICENSE' - - 'NOTICE' - pull_request: - branches: - - main - paths-ignore: - - '.github/ISSUE_TEMPLATE/*.md' - - '*.md' - - 'docs/**' - - 'mkdocs.yml' - - 'LICENSE' - - 'NOTICE' - -env: - GO_VERSION: "1.24.4" - KIND_VERSION: "v0.17.0" - KIND_IMAGE: "kindest/node:v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6" - -# Disable permissions granted to the GITHUB_TOKEN for all the available scopes. -permissions: {} - -# Cancel any in-flight jobs for the same PR branch so there's only one active at a time. -concurrency: - group: ${{ github.workflow }}-${{ github.ref }} - cancel-in-progress: true - -jobs: - verify-code: - name: Verify code - runs-on: ubuntu-24.04 - steps: - - name: Setup Go - uses: actions/setup-go@v4 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Verify Go code - uses: golangci/golangci-lint-action@v3.4.0 - with: - args: --verbose - version: latest - skip-pkg-cache: true - skip-build-cache: true - - name: Verify YAML code - uses: ibiqlik/action-yamllint@v3 - - name: Vendor Go modules - run: go mod vendor - - name: Verify generated Go code - run: GOPATH="$(go env GOPATH)" ./hack/verify-codegen.sh - unit-tests: - name: Run unit tests - runs-on: ubuntu-24.04 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Run unit tests - run: make unit-tests - - name: Upload code coverage - uses: codecov/codecov-action@v3 - with: - files: ./coverage.txt - itest-starboard-cli: - name: Run integration tests / Starboard CLI - needs: - - unit-tests - - verify-code - runs-on: ubuntu-24.04 - timeout-minutes: 15 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Setup Kubernetes cluster (KIND) - uses: engineerd/setup-kind@v0.5.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Test connection to Kubernetes cluster - run: | - kubectl cluster-info - kubectl wait --for=condition=Ready nodes --all --timeout=300s - kubectl describe node - - name: Run integration tests - run: | - make itests-starboard - env: - KUBECONFIG: /home/runner/.kube/config - STARBOARD_TEST_CLI_LOG_LEVEL: "0" - - name: Upload code coverage - uses: codecov/codecov-action@v3 - with: - files: ./itest/starboard/coverage.txt - itest-starboard-operator: - name: Run integration tests / Starboard Operator - needs: - - unit-tests - - verify-code - runs-on: ubuntu-24.04 - timeout-minutes: 15 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Setup Kubernetes cluster (KIND) - uses: engineerd/setup-kind@v0.5.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Test connection to Kubernetes cluster - run: | - kubectl cluster-info - kubectl wait --for=condition=Ready nodes --all --timeout=300s - kubectl describe node - - name: Run integration tests - run: | - kubectl apply -f deploy/crd/vulnerabilityreports.crd.yaml \ - -f deploy/crd/configauditreports.crd.yaml \ - -f deploy/crd/clusterconfigauditreports.crd.yaml \ - -f deploy/crd/clustercompliancereports.crd.yaml \ - -f deploy/crd/clustercompliancedetailreports.crd.yaml \ - -f deploy/crd/ciskubebenchreports.crd.yaml - kubectl apply -f deploy/static/01-starboard-operator.ns.yaml \ - -f deploy/static/02-starboard-operator.rbac.yaml - kubectl apply -f deploy/static/03-starboard-operator.config.yaml \ - -f deploy/static/04-starboard-operator.policies.yaml - make itests-starboard-operator - env: - KUBECONFIG: /home/runner/.kube/config - OPERATOR_NAMESPACE: starboard-system - OPERATOR_TARGET_NAMESPACES: default - - name: Upload code coverage - uses: codecov/codecov-action@v3 - with: - files: ./itest/starboard-operator/coverage.txt - integration-operator-conftest: - name: Integration / Operator / Conftest - needs: - - unit-tests - - verify-code - runs-on: ubuntu-24.04 - timeout-minutes: 15 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Setup Kubernetes cluster (KIND) - uses: engineerd/setup-kind@v0.5.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Test connection to Kubernetes cluster - run: | - kubectl cluster-info - kubectl wait --for=condition=Ready nodes --all --timeout=300s - kubectl describe node - - name: Run integration tests - run: | - kubectl apply -f deploy/crd/vulnerabilityreports.crd.yaml \ - -f deploy/crd/configauditreports.crd.yaml \ - -f deploy/crd/clusterconfigauditreports.crd.yaml \ - -f deploy/crd/clustercompliancereports.crd.yaml \ - -f deploy/crd/clustercompliancedetailreports.crd.yaml \ - -f deploy/crd/ciskubebenchreports.crd.yaml - kubectl apply -f deploy/static/01-starboard-operator.ns.yaml \ - -f deploy/static/02-starboard-operator.rbac.yaml - kubectl apply -f deploy/static/03-starboard-operator.config.yaml - make integration-operator-conftest - env: - KUBECONFIG: /home/runner/.kube/config - - name: Upload code coverage - uses: codecov/codecov-action@v3 - with: - files: ./itest/starboard-operator/configauditreport/conftest/coverage.txt - test-helm-chart: - if: "false" # TODO It's broken on a release candidate PRs because it's using container image that has not been released yet. - name: Test Helm Chart - needs: - - itest-starboard-cli - - itest-starboard-operator - - integration-operator-conftest - runs-on: ubuntu-24.04 - steps: - - name: Checkout - uses: actions/checkout@v3 - with: - fetch-depth: 0 - - name: Install Helm - uses: azure/setup-helm@18bc76811624f360dbd7f18c2d4ecb32c7b87bab # v1.1 - with: - version: v3.5.0 - - name: Set up python - uses: actions/setup-python@98f2ad02fd48d057ee3b4d4f66525b231c3e52b6 # v2.3.0 - with: - python-version: 3.7 - - name: Setup Chart Linting - id: lint - uses: helm/chart-testing-action@dae259e86a35ff09145c0805e2d7dd3f7207064a # v2.1.0 - - name: Setup Kubernetes cluster (KIND) - uses: helm/kind-action@94729529f85113b88f4f819c17ce61382e6d8478 # v1.2.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Run chart-testing - run: ct lint-and-install --validate-maintainers=false --charts deploy/helm diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/workflows/publish-docs.yaml new/starboard-0.15.27/.github/workflows/publish-docs.yaml --- old/starboard-0.15.26/.github/workflows/publish-docs.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/workflows/publish-docs.yaml 1970-01-01 01:00:00.000000000 +0100 @@ -1,43 +0,0 @@ ---- -# This is a manually triggered workflow to build and publish the MkDocs from the -# specified Git revision to GitHub pages on https://aquasecurity.github.io/starboard. -name: Publish documentation - -on: - workflow_dispatch: - inputs: - ref: - description: The branch, tag or SHA to deploy, e.g. v0.0.1 - required: true - -# Disable permissions granted to the GITHUB_TOKEN for all the available scopes. -permissions: {} - -jobs: - deploy: - name: Deploy documentation - runs-on: ubuntu-24.04 - permissions: - contents: write - steps: - - name: Checkout main - uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 - with: - ref: ${{ github.event.inputs.ref }} - fetch-depth: 0 - persist-credentials: true - - uses: actions/setup-python@98f2ad02fd48d057ee3b4d4f66525b231c3e52b6 - with: - python-version: 3.x - - run: | - pip install git+https://${GH_TOKEN}@github.com/squidfunk/mkdocs-material-insiders.git - pip install mike - pip install mkdocs-macros-plugin - env: - # Note: It is not the same as ${{ secrets.GITHUB_TOKEN }} ! - GH_TOKEN: ${{ secrets.MKDOCS_AQUA_BOT }} - - run: | - git config user.name "aqua-bot" - git config user.email "aqua-...@users.noreply.github.com" - - run: | - mike deploy --push --update-aliases ${{ github.event.inputs.ref }} latest diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/workflows/publish-helm-chart.yaml new/starboard-0.15.27/.github/workflows/publish-helm-chart.yaml --- old/starboard-0.15.26/.github/workflows/publish-helm-chart.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/workflows/publish-helm-chart.yaml 1970-01-01 01:00:00.000000000 +0100 @@ -1,71 +0,0 @@ ---- -# This is a manually triggered workflow to package and upload the Helm chart from the -# main branch to Aqua Security repository at https://github.com/aquasecurity/helm-charts. -name: Publish Helm chart - -on: - workflow_dispatch: - inputs: - ref: - description: The branch, tag or SHA to publish, e.g. v0.0.1 - required: true -env: - HELM_REP: helm-charts - GH_OWNER: aquasecurity - CHART_DIR: deploy/helm - KIND_VERSION: "v0.11.1" - KIND_IMAGE: "kindest/node:v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6" -jobs: - release: - runs-on: ubuntu-24.04 - steps: - - name: Checkout - uses: actions/checkout@v3 - with: - ref: ${{ github.event.inputs.ref }} - fetch-depth: 0 - - name: Install Helm - uses: azure/setup-helm@18bc76811624f360dbd7f18c2d4ecb32c7b87bab # v1.1 - with: - version: v3.5.0 - - name: Set up python - uses: actions/setup-python@98f2ad02fd48d057ee3b4d4f66525b231c3e52b6 - with: - python-version: 3.7 - - name: Setup Chart Linting - id: lint - uses: helm/chart-testing-action@dae259e86a35ff09145c0805e2d7dd3f7207064a # v2.1.0 - - name: Setup Kubernetes cluster (KIND) - uses: helm/kind-action@94729529f85113b88f4f819c17ce61382e6d8478 # v1.2.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Run chart-testing - run: ct lint-and-install --validate-maintainers=false --charts deploy/helm - - name: Install chart-releaser - run: | - wget https://github.com/helm/chart-releaser/releases/download/v1.3.0/chart-releaser_1.3.0_linux_amd64.tar.gz - echo "baed2315a9bb799efb71d512c5198a2a3b8dcd139d7f22f878777cffcd649a37 chart-releaser_1.3.0_linux_amd64.tar.gz" | sha256sum -c - - tar xzvf chart-releaser_1.3.0_linux_amd64.tar.gz cr - - name: Package helm chart - run: | - ./cr package ${{ env.CHART_DIR }} - - name: Upload helm chart - # Failed with upload the same version: https://github.com/helm/chart-releaser/issues/101 - continue-on-error: true - run: | - ./cr upload -o ${{ env.GH_OWNER }} -r ${{ env.HELM_REP }} --token ${{ secrets.ORG_REPO_TOKEN }} -p .cr-release-packages - - name: Index helm chart - run: | - ./cr index -o ${{ env.GH_OWNER }} -r ${{ env.HELM_REP }} -c https://${{ env.GH_OWNER }}.github.io/${{ env.HELM_REP }}/ -i index.yaml - - name: Push index file - uses: dmnemec/copy_file_to_another_repo_action@c93037aa10fa8893de271f19978c980d0c1a9b37 # v1.1.1 - env: - API_TOKEN_GITHUB: ${{ secrets.ORG_REPO_TOKEN }} - with: - source_file: 'index.yaml' - destination_repo: '${{ env.GH_OWNER }}/${{ env.HELM_REP }}' - destination_folder: '.' - destination_branch: 'gh-pages' - user_email: aqua-...@users.noreply.github.com - user_name: 'aqua-bot' diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/workflows/release-snapshot.yaml new/starboard-0.15.27/.github/workflows/release-snapshot.yaml --- old/starboard-0.15.26/.github/workflows/release-snapshot.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/workflows/release-snapshot.yaml 1970-01-01 01:00:00.000000000 +0100 @@ -1,63 +0,0 @@ ---- -# Release snapshot on CRON schedule (every night) or on demand. -name: Release snapshot - -on: - workflow_dispatch: {} - schedule: - - cron: "0 0 * * *" - -env: - GO_VERSION: "1.24.4" - -# Disable permissions granted to the GITHUB_TOKEN for all the available scopes. -permissions: {} - -jobs: - release-snapshot: - name: Release unversioned snapshot - runs-on: ubuntu-24.04 - env: - DOCKER_CLI_EXPERIMENTAL: "enabled" - steps: - - name: Set up QEMU - uses: docker/setup-qemu-action@v2 - - name: Set up Docker Buildx - id: buildx - uses: docker/setup-buildx-action@v2 - - name: Available platforms - run: echo ${{ steps.buildx.outputs.platforms }} - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Release snapshot - uses: goreleaser/goreleaser-action@v3 - with: - version: v1.7.0 - args: release --snapshot --skip-publish --rm-dist - - name: Scan Starboard CLI image for vulnerabilities - uses: aquasecurity/trivy-action@master - with: - image-ref: 'docker.io/aquasec/starboard:${{ github.sha }}-amd64' - exit-code: '1' - ignore-unfixed: true - severity: 'CRITICAL,HIGH' - - name: Scan Starboard Operator image for vulnerabilities - uses: aquasecurity/trivy-action@master - with: - image-ref: 'docker.io/aquasec/starboard-operator:${{ github.sha }}-amd64' - exit-code: '1' - ignore-unfixed: true - severity: 'CRITICAL,HIGH' - - name: Notify dedicated teams channel - uses: jdcargile/ms-teams-notification@v1.3 - if: failure() - with: - github-token: ${{ secrets.ORG_REPO_TOKEN }} - ms-teams-webhook-uri: ${{ secrets.MS_TEAMS_WEBHOOK_URI }} - notification-summary: vulnerabilities has been found in starboard-operator image - notification-color: 17a2b8 - timezone: America/Denver diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.github/workflows/release.yaml new/starboard-0.15.27/.github/workflows/release.yaml --- old/starboard-0.15.26/.github/workflows/release.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.github/workflows/release.yaml 1970-01-01 01:00:00.000000000 +0100 @@ -1,205 +0,0 @@ ---- -# This workflow is triggered whenever we release a new version of Starboard -# by creating an annotated Git tag and pushing it to the upstream Git repository. -# -# git tag -a v0.0.1 -m 'Release v0.0.1' -# git push upstream v0.0.1 -name: Release -on: - push: - tags: - - "v*" -env: - GO_VERSION: "1.24.4" - KIND_VERSION: "v0.11.1" - KIND_IMAGE: "kindest/node:v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6" -jobs: - unit-tests: - name: Run unit tests - runs-on: ubuntu-24.04 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - with: - fetch-depth: 0 - - name: Run unit tests - run: make unit-tests - itest-starboard: - name: Run integration tests / Starboard CLI - needs: - - unit-tests - runs-on: ubuntu-24.04 - timeout-minutes: 15 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Setup Kubernetes cluster (KIND) - uses: engineerd/setup-kind@v0.5.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Test connection to Kubernetes cluster - run: | - kubectl cluster-info - kubectl wait --for=condition=Ready nodes --all --timeout=300s - kubectl describe node - - name: Run integration tests - run: | - make itests-starboard - env: - KUBECONFIG: /home/runner/.kube/config - STARBOARD_TEST_CLI_LOG_LEVEL: "0" - - name: Cleanup Docker and KIND resources - run: | - docker system prune -a --force - docker volume prune --force - itest-starboard-operator: - name: Run integration tests / Starboard Operator - needs: - - unit-tests - runs-on: ubuntu-24.04 - timeout-minutes: 15 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Setup Kubernetes cluster (KIND) - uses: engineerd/setup-kind@v0.5.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Test connection to Kubernetes cluster - run: | - kubectl cluster-info - kubectl wait --for=condition=Ready nodes --all --timeout=300s - kubectl describe node - - name: Run integration tests - run: | - kubectl apply -f deploy/crd/vulnerabilityreports.crd.yaml \ - -f deploy/crd/configauditreports.crd.yaml \ - -f deploy/crd/clusterconfigauditreports.crd.yaml \ - -f deploy/crd/clustercompliancereports.crd.yaml \ - -f deploy/crd/clustercompliancedetailreports.crd.yaml \ - -f deploy/crd/ciskubebenchreports.crd.yaml - kubectl apply -f deploy/static/01-starboard-operator.ns.yaml \ - -f deploy/static/02-starboard-operator.rbac.yaml - make itests-starboard-operator - env: - KUBECONFIG: /home/runner/.kube/config - OPERATOR_NAMESPACE: starboard-system - OPERATOR_TARGET_NAMESPACES: default - - name: Cleanup Docker and KIND resources - run: | - docker system prune -a --force - docker volume prune --force - integration-operator-conftest: - name: Integration / Operator / Conftest - needs: - - unit-tests - runs-on: ubuntu-24.04 - timeout-minutes: 15 - steps: - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - - name: Setup Kubernetes cluster (KIND) - uses: engineerd/setup-kind@v0.5.0 - with: - version: ${{ env.KIND_VERSION }} - image: ${{ env.KIND_IMAGE }} - - name: Test connection to Kubernetes cluster - run: | - kubectl cluster-info - kubectl wait --for=condition=Ready nodes --all --timeout=300s - kubectl describe node - - name: Run integration tests - run: | - kubectl apply -f deploy/crd/vulnerabilityreports.crd.yaml \ - -f deploy/crd/configauditreports.crd.yaml \ - -f deploy/crd/clusterconfigauditreports.crd.yaml \ - -f deploy/crd/clustercompliancereports.crd.yaml \ - -f deploy/crd/clustercompliancedetailreports.crd.yaml \ - -f deploy/crd/ciskubebenchreports.crd.yaml - kubectl apply -f deploy/static/01-starboard-operator.ns.yaml \ - -f deploy/static/02-starboard-operator.rbac.yaml - make integration-operator-conftest - env: - KUBECONFIG: /home/runner/.kube/config - OPERATOR_NAMESPACE: starboard-system - OPERATOR_TARGET_NAMESPACES: default - - name: Cleanup Docker and KIND resources - run: | - docker system prune -a --force - docker volume prune --force - release: - name: Release - needs: - - itest-starboard - - itest-starboard-operator - - integration-operator-conftest - runs-on: ubuntu-24.04 - env: - DOCKER_CLI_EXPERIMENTAL: "enabled" - steps: - - name: Cleanup Docker and KIND resources (Pre-Release) - run: | - docker system prune -a --force - docker volume prune --force - - name: Check disk usage (Pre-Release) - run: df -h - - name: Set up QEMU - uses: docker/setup-qemu-action@v2 - - name: Set up Docker Buildx - id: buildx - uses: docker/setup-buildx-action@v2 - - name: Available platforms - run: echo ${{ steps.buildx.outputs.platforms }} - - name: Setup Go - uses: actions/setup-go@v3 - with: - go-version: ${{ env.GO_VERSION }} - - name: Checkout code - uses: actions/checkout@v3 - with: - fetch-depth: 0 - - name: Login to docker.io registry - uses: docker/login-action@v3 - with: - username: ${{ secrets.DOCKERHUB_USER }} - password: ${{ secrets.DOCKERHUB_TOKEN }} - - name: login to Aqua Container Registry - uses: docker/login-action@v3 - with: - registry: ${{ secrets.AQUSEC_ACR_REGISTRY_NAME }} - username: ${{ secrets.AQUASEC_ACR_USERNAME }} - password: ${{ secrets.AQUASEC_ACR_PASSWORD }} - - name: Release - uses: goreleaser/goreleaser-action@v3 - with: - version: v1.7.0 - args: release --rm-dist - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - AQUSEC_ACR_REGISTRY_NAME: ${{ secrets.AQUSEC_ACR_REGISTRY_NAME }} - # - name: Update new version for plugin 'starboard' in krew-index - # uses: rajatjindal/krew-release-bot@v0.0.43 - - name: Cleanup Docker and KIND resources - run: | - docker system prune -a --force - docker volume prune --force - - name: Check disk usage - run: df -h diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/.gitignore new/starboard-0.15.27/.gitignore --- old/starboard-0.15.26/.gitignore 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/.gitignore 1970-01-01 01:00:00.000000000 +0100 @@ -1,21 +0,0 @@ -.idea/ -.vscode/ - -bin/starboard* -dist/ - -coverage.txt -itest/coverage.txt -itest/itest.test -vendor - -# Ignore Mac DS_Store files -*.DS_Store - -site/ - -## helm chart -output/* -.cr-release-packages/* -## idea files -*.iml diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/build/starboard-operator/Dockerfile.fips.ubi8 new/starboard-0.15.27/build/starboard-operator/Dockerfile.fips.ubi8 --- old/starboard-0.15.26/build/starboard-operator/Dockerfile.fips.ubi8 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/build/starboard-operator/Dockerfile.fips.ubi8 2025-09-04 12:40:13.000000000 +0200 @@ -2,7 +2,7 @@ LABEL name="Starboard" \ vendor="Aqua Security Software Ltd." \ - version="v0.15.26" \ + version="v0.15.27" \ summary="Starboard Operator." RUN microdnf install -y shadow-utils diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/build/starboard-operator/Dockerfile.fips.ubi9 new/starboard-0.15.27/build/starboard-operator/Dockerfile.fips.ubi9 --- old/starboard-0.15.26/build/starboard-operator/Dockerfile.fips.ubi9 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/build/starboard-operator/Dockerfile.fips.ubi9 2025-09-04 12:40:13.000000000 +0200 @@ -2,7 +2,7 @@ LABEL name="Starboard" \ vendor="Aqua Security Software Ltd." \ - version="v0.15.26" \ + version="v0.15.27" \ summary="Starboard Operator." RUN microdnf install -y shadow-utils diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/build/starboard-operator/Dockerfile.ubi8 new/starboard-0.15.27/build/starboard-operator/Dockerfile.ubi8 --- old/starboard-0.15.26/build/starboard-operator/Dockerfile.ubi8 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/build/starboard-operator/Dockerfile.ubi8 2025-09-04 12:40:13.000000000 +0200 @@ -2,7 +2,7 @@ LABEL name="Starboard" \ vendor="Aqua Security Software Ltd." \ - version="v0.15.26" \ + version="v0.15.27" \ summary="Starboard Operator." RUN microdnf install -y shadow-utils diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/build/starboard-operator/Dockerfile.ubi9 new/starboard-0.15.27/build/starboard-operator/Dockerfile.ubi9 --- old/starboard-0.15.26/build/starboard-operator/Dockerfile.ubi9 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/build/starboard-operator/Dockerfile.ubi9 2025-09-04 12:40:13.000000000 +0200 @@ -2,11 +2,11 @@ LABEL name="Starboard" \ vendor="Aqua Security Software Ltd." \ - version="v0.15.26" \ + version="v0.15.27" \ summary="Starboard Operator." \ org.label-schema.schema-version="1.0" \ maintainer="Aqua Security Software Ltd." \ - release=v0.15.26 \ + release=v0.15.27 \ description="Starboard Operator." RUN microdnf install -y shadow-utils diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/ciskubebenchreports.crd.yaml new/starboard-0.15.27/deploy/crd/ciskubebenchreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/ciskubebenchreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/ciskubebenchreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: ciskubebenchreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/clustercompliancedetailreports.crd.yaml new/starboard-0.15.27/deploy/crd/clustercompliancedetailreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/clustercompliancedetailreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/clustercompliancedetailreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: clustercompliancedetailreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/clustercompliancereports.crd.yaml new/starboard-0.15.27/deploy/crd/clustercompliancereports.crd.yaml --- old/starboard-0.15.26/deploy/crd/clustercompliancereports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/clustercompliancereports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: clustercompliancereports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io scope: Cluster diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/clusterconfigauditreports.crd.yaml new/starboard-0.15.27/deploy/crd/clusterconfigauditreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/clusterconfigauditreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/clusterconfigauditreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: clusterconfigauditreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/clustervulnerabilityreports.crd.yaml new/starboard-0.15.27/deploy/crd/clustervulnerabilityreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/clustervulnerabilityreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/clustervulnerabilityreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: clustervulnerabilityreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/configauditreports.crd.yaml new/starboard-0.15.27/deploy/crd/configauditreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/configauditreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/configauditreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: configauditreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/kubehunterreports.crd.yaml new/starboard-0.15.27/deploy/crd/kubehunterreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/kubehunterreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/kubehunterreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: kubehunterreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/crd/vulnerabilityreports.crd.yaml new/starboard-0.15.27/deploy/crd/vulnerabilityreports.crd.yaml --- old/starboard-0.15.26/deploy/crd/vulnerabilityreports.crd.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/crd/vulnerabilityreports.crd.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: vulnerabilityreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/helm/Chart.yaml new/starboard-0.15.27/deploy/helm/Chart.yaml --- old/starboard-0.15.26/deploy/helm/Chart.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/helm/Chart.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -11,7 +11,7 @@ # This is the version number of the application being deployed. This version number should be # incremented each time you make changes to the application. Versions are not expected to # follow Semantic Versioning. They should reflect the version the application is using. -appVersion: 0.15.26 +appVersion: 0.15.27 # kubeVersion: A SemVer range of compatible Kubernetes versions (optional) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/specs/nsa-1.0.yaml new/starboard-0.15.27/deploy/specs/nsa-1.0.yaml --- old/starboard-0.15.26/deploy/specs/nsa-1.0.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/specs/nsa-1.0.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -6,7 +6,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl spec: name: nsa diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/static/01-starboard-operator.ns.yaml new/starboard-0.15.27/deploy/static/01-starboard-operator.ns.yaml --- old/starboard-0.15.26/deploy/static/01-starboard-operator.ns.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/static/01-starboard-operator.ns.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -6,5 +6,5 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/static/02-starboard-operator.rbac.yaml new/starboard-0.15.27/deploy/static/02-starboard-operator.rbac.yaml --- old/starboard-0.15.26/deploy/static/02-starboard-operator.rbac.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/static/02-starboard-operator.rbac.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -7,7 +7,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: rbac.authorization.k8s.io/v1 @@ -17,7 +17,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl rules: - apiGroups: @@ -175,7 +175,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl roleRef: apiGroup: rbac.authorization.k8s.io diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/static/03-starboard-operator.config.yaml new/starboard-0.15.27/deploy/static/03-starboard-operator.config.yaml --- old/starboard-0.15.26/deploy/static/03-starboard-operator.config.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/static/03-starboard-operator.config.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -7,7 +7,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: v1 @@ -18,7 +18,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: v1 @@ -29,7 +29,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: vulnerabilityReports.scanner: "Trivy" @@ -45,7 +45,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: trivy.imageRef: "docker.io/aquasec/trivy:0.25.2" @@ -66,7 +66,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: polaris.imageRef: "quay.io/fairwinds/polaris:4.2" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/static/04-starboard-operator.policies.yaml new/starboard-0.15.27/deploy/static/04-starboard-operator.policies.yaml --- old/starboard-0.15.26/deploy/static/04-starboard-operator.policies.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/static/04-starboard-operator.policies.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -7,7 +7,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: library.kubernetes.rego: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/static/05-starboard-operator.deployment.yaml new/starboard-0.15.27/deploy/static/05-starboard-operator.deployment.yaml --- old/starboard-0.15.26/deploy/static/05-starboard-operator.deployment.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/static/05-starboard-operator.deployment.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -7,7 +7,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl annotations: prometheus.io/path: /metrics @@ -30,7 +30,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl spec: replicas: 1 @@ -50,7 +50,7 @@ automountServiceAccountToken: true containers: - name: "starboard-operator" - image: "docker.io/aquasec/starboard-operator:0.15.26" + image: "docker.io/aquasec/starboard-operator:0.15.27" imagePullPolicy: IfNotPresent env: - name: OPERATOR_NAMESPACE diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/deploy/static/starboard.yaml new/starboard-0.15.27/deploy/static/starboard.yaml --- old/starboard-0.15.26/deploy/static/starboard.yaml 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/deploy/static/starboard.yaml 2025-09-04 12:40:13.000000000 +0200 @@ -5,7 +5,7 @@ name: vulnerabilityreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: @@ -248,7 +248,7 @@ name: configauditreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: @@ -304,7 +304,7 @@ name: clusterconfigauditreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: @@ -360,7 +360,7 @@ name: ciskubebenchreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: @@ -410,7 +410,7 @@ name: clustercompliancereports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io scope: Cluster @@ -547,7 +547,7 @@ name: clustercompliancedetailreports.aquasecurity.github.io labels: app.kubernetes.io/managed-by: starboard - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" spec: group: aquasecurity.github.io versions: @@ -590,7 +590,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: v1 @@ -601,7 +601,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: rbac.authorization.k8s.io/v1 @@ -611,7 +611,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl rules: - apiGroups: @@ -769,7 +769,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl roleRef: apiGroup: rbac.authorization.k8s.io @@ -788,7 +788,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: v1 @@ -799,7 +799,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl --- apiVersion: v1 @@ -810,7 +810,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: vulnerabilityReports.scanner: "Trivy" @@ -826,7 +826,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: trivy.imageRef: "docker.io/aquasec/trivy:0.25.2" @@ -847,7 +847,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: polaris.imageRef: "quay.io/fairwinds/polaris:4.2" @@ -1048,7 +1048,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl data: library.kubernetes.rego: @@ -1955,7 +1955,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl annotations: prometheus.io/path: /metrics @@ -1978,7 +1978,7 @@ labels: app.kubernetes.io/name: starboard-operator app.kubernetes.io/instance: starboard-operator - app.kubernetes.io/version: "0.15.26" + app.kubernetes.io/version: "0.15.27" app.kubernetes.io/managed-by: kubectl spec: replicas: 1 @@ -1998,7 +1998,7 @@ automountServiceAccountToken: true containers: - name: "starboard-operator" - image: "docker.io/aquasec/starboard-operator:0.15.26" + image: "docker.io/aquasec/starboard-operator:0.15.27" imagePullPolicy: IfNotPresent env: - name: OPERATOR_NAMESPACE diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/starboard-0.15.26/go.mod new/starboard-0.15.27/go.mod --- old/starboard-0.15.26/go.mod 2025-06-24 09:02:45.000000000 +0200 +++ new/starboard-0.15.27/go.mod 2025-09-04 12:40:13.000000000 +0200 @@ -1,6 +1,6 @@ module github.com/aquasecurity/starboard -go 1.24.4 +go 1.24.6 require ( github.com/caarlos0/env/v6 v6.10.0 ++++++ starboard.obsinfo ++++++ --- /var/tmp/diff_new_pack.Z4TVaE/_old 2025-09-18 21:12:41.684533340 +0200 +++ /var/tmp/diff_new_pack.Z4TVaE/_new 2025-09-18 21:12:41.684533340 +0200 @@ -1,5 +1,5 @@ name: starboard -version: 0.15.26 -mtime: 1750748565 -commit: 60fe70caa2f19b29b92adfca594af7afd0df0b04 +version: 0.15.27 +mtime: 1756982413 +commit: e16fe4d17096b335fba5ec5ece8d1e59c39f13b8 ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/starboard/vendor.tar.gz /work/SRC/openSUSE:Factory/.starboard.new.27445/vendor.tar.gz differ: char 82, line 1
