Kyverno - v1.9.2

⚠️ Changed ⚠️

  • Burst limit (--clientRateLimitBurst) has its defaults increased from 50 to 300 and QPS (--clientRateLimitQPS) from 20 to 300 which should fix issues in very large clusters with admission reports not getting aggregated quickly enough to the final Policy Report (#6540, #6532)
  • Report controller workers have been increased from 2 to 10 which, along with the burst and QPS increases listed above, should help reconcile reports much faster (#6532)
  • Included a message on how to bypass Kyverno policy schema validation (spec.schemaValidation) when Kyverno is not able to validate if a rule is correct (#6604)

🐛 Fixed 🐛

  • Policies in Audit mode are processed correctly when admission reports are disabled (#6545)
  • Fixed duplicate messages in a policy report message field when using a podSecurity subrule (#6634)
  • Fixed a controller duration computation (#6569)
Click to expand all PRs #6545 fix: process audit policies when admission reports are disabled #6540 fix: increase burst #6532 fix: improve reports controller default values and workers #6531 fix: process audit policies when admission reports are disabled #6522 fix: improve reports controller default values and workers #6332 More kuttl standard generate tests #6634 fix: skip duplicate PSa checks for the latest version #6604 fix: add message to bypass schema validation when it fails #6569 fix: controller duration computation

Details

date
March 22, 2023, 4:21 a.m.
name
v1.9.2
type
Patch
official page
https://github.com/kyverno/kyverno/releases/tag/v1.9.2
👇
Register or login to:
  • 🔍View and search all Kyverno releases.
  • 🛠️Create and share lists to track your tools.
  • 🚨Setup notifications for major, security, feature or patch updates.
  • 🚀Much more coming soon!
Continue with GitHub
Continue with Google
or