Bug Fixes

• Handle list variables in CLI (#1870)
• Fix strategicMergePath failure with conditional anchors (#1658)
• Fix safe-to-evict policy on CronJobs (#1915)
• Fix panic in ForceMutate (#1896 )
• Fix variable substitution for chained mutate policies (#2022)
• Fix security advisory (#1962)
• Refresh CRD on updates (#2094)
• Apply wildcard substitution to lists (#1960)
• Fix Kyverno running with external metrics (#2126)
• Mutate image registry correctly when the registry is missing (#2028)
• Fix index out of range for mutate policies (#2109)
• Remove duplicate field in the chart (#2125)
• OOMKilled on the fresh installation (#2128)
• Fix violations reporting flow (#1816)
• Strict checks for pod controllers (#1784)
• Fix Helm Chart metricsServce.create (#2097)
• Test policy excluding resources or clusterroles (#2067)
• Fix generate policy reconciliation logic (#2092)
• Test command - random output (#2027)
• Mutate policy for CRD (#1831)
• NetworkPolicy generation (#1769)
• Test command - unexpected results (#2075)
• Test command - support autogen (#1922)
• Fix error invalid memory address (#2083)
• Fix duplicate policies returned by policy cache (#2074)
• Fix broken link for Helm (#2061)
• Generate policies based on Secrets creation (#2025)

Features

• Convert warning to info log (#2170. #1256)
• Support disallow pod exec operation (#2146)
• Import Kiwigrid Sidecar in Grafana dashboard (#2188)
• Add ServiceMonitor in Helm chart (#1984)
• Image verification with Cosign (#2077)
• Optimize image verification checks when a pod is created / modified (#2171)
• Improve coverage of sample policies (#2169)
• Remove policy status (#1228)
• Block wildcard match for kind in match/exclude (#1963)
• Garbage collect (Cluster)ReportChangeRequest (#2131)
• Configure ENVs separately via Helm Chart (#2036)
• Custom application name with Helm install (#1819)
• Validate variables in policy (#1840)
• Support variable substitution for null (#1801)
• Add e2e tests for generate clone policies (#2085)
• Keep downstream resources for generate clone policy (#1401)
• Automate Helm Release (#2057)
• Configurable events for policy application (#1939)
• Support name list in match/exclude (#1990)
• Metrics re-design to deal with cardinality explosion (#2121)

Thanks to all our contributors! 😊