Skip to content

v0.11 Release Blog

Rahul Jadhav edited this page Aug 14, 2023 · 39 revisions

Operator support

Open Telemetry

The OpenTelemetry KubeArmor receiver converts KubeArmor telemetry data (logs, visibilty events, policy violations) to the openTelemetry format. This adds opentelemetry support to KubeArmor providing a vendor agnostic means of exporting KubeArmor's telemetry data to various observability backend such as elastic search, grafana, signoz and a bunch of other opentelemetry adopters!

KubeArmor as Canonical Microk8s Addon

Microk8s is a full embedded Kubernetes platform that is lightweight yet robust and scalable and is a perfect fit for edge, embedded scenarios. KubeArmor support for Canonical MicroK8s as a community addon is merged making microk8s more secure. Microk8s with KubeArmor brings enterprise grade security to lightweight edge kubernetes environments.

Kind and Minikube Compatibility

With this release, KubeArmor extends its compatibility to Kind and Minikube clusters, enabling you to effortlessly apply KubeArmor's security policies to your local testing and development environments. Maintain consistency between testing and production while fortifying your workloads.

karmor profile (Prashant)

FlatCar support (Barun)

EKS Addon published (Ankur)

Helm chart updates (Rudraksh,Ramakant)

Announcing k8tls

K8tls (pronounced cattles) is a k8s-native service endpoint scanning engine that verifies whether the endpoint is using secure communication and whether it is using right security configuration.

  • 🔒 Check if the server port is TLS enabled or not.
  • 📃 Check TLS version, Ciphersuite, Hash, and Signature for the connection. Are these TLS parameters per the TLS best practices guide?
  • Certificate Verification
    • 💥 Is the certificate expired or revoked?
    • ✍️ Is it a self-signed certificate?
    • ⛓️ Is there a self-signed certificate in the full certificate chain?

Terraform Updates

Adopters update

  • 5G-SBP
  • IDSM

Scale testing: KubeArmor-Relay (Shreyas)

Clone this wiki locally