v3.2.0

defaultstorageclass-protection

• update client-go to 0.19.2 to support k8s 1.16-1.21

• use the distroless image and run as nonroot user to address image CVEs
  #880 (@mesosphere-mergebot)

• Fix CVE-2019-14697.
  #878 (@faiq)

• defaultstorageclass: use unique Service selectors to avoid selecting unwanted endpoints from other charts.
  #832 (@dkoshkin)

dex

• Bump kube-rbac-proxy to tackle vulnerabilities from CVE-14697
• fix: ignore metrics auth https://github.com/mesosphere/dex-controller/compare/v0.6.5...v0.6.6#diff-5437c8653258a2e2a070c91d87e2f7581d12f6c7f103b0d8c324a37307287b65R30
• chore: bump kube-rbac-proxy version https://github.com/mesosphere/dex-controller/compare/v0.6.5...v0.6.6#diff-4d1856f3f2123c349e94607208c95a821f2485405db0b97ce41e87336a0ea3a7R21
  #870 (@joejulian)

fluentbit

• [fluent-bit] Fixes an issue causing some audit logs to be dropped.
  #801 (@branden)

kiali

• kiali: configure to use the same version for kiali/kialii that matches the operator.
  #888 (@mesosphere-mergebot)

kibana

• fix: Downgrade kibana and elasticsearch to 6.8.10 to fix a regression
  #829 (@gracedo)

opsportal

• OpsPortal: bump kommander ui version fixing the service monitor issues
  #851 (@hectorj2f)

velero

• Upgrade Velero to 1.5.2 and minio 8.0.8. Users can now use the official velero client, where before users needed to use a patched velero client.
  #790 (@s12chung)
• Upgrade kubeaddons-addon-initializer init container to v0.4.3. This fixes the issue that was making it impossible to use a custom S3Url in Velero. (COPS-6675)
  #752 (@armandgrillet)