diff --git a/chart/templates/kyverno-policies/values.yaml b/chart/templates/kyverno-policies/values.yaml
index 4ae26acdcde0e87e96baf53bbaf79410ec5a6140..e47fadfa6434544901f188ddf2d648fa83f1b53d 100644
--- a/chart/templates/kyverno-policies/values.yaml
+++ b/chart/templates/kyverno-policies/values.yaml
@@ -111,6 +111,7 @@ policies:
names:
- neuvector-enforcer-pod*
- neuvector-controller-pod*
+ - neuvector-scanner-pod*
{{- end }}
{{- end }}
@@ -204,7 +205,9 @@ policies:
- neuvector
names:
- neuvector-enforcer-pod*
+ - neuvector-cert-upgrader-job-*
- neuvector-controller-pod*
+ - neuvector-scanner-pod*
- neuvector-prometheus-exporter-pod*
{{- end }}
{{- if .Values.addons.holocron.enabled }}
@@ -354,6 +357,7 @@ policies:
names:
- neuvector-enforcer-pod-*
- neuvector-controller-pod-*
+ - neuvector-cert-upgrader-job-*
{{- end }}
{{- end }}
@@ -577,6 +581,7 @@ policies:
- neuvector
names:
- neuvector-enforcer-pod*
+ - neuvector-cert-upgrader-job-*
- neuvector-controller-pod*
{{- end }}
{{- if $deployNodeAgent }}
@@ -887,6 +892,7 @@ policies:
allow:
- neuvector-manager-pod-*
- neuvector-scanner-pod-*
+ - neuvector-cert-upgrader-job-*
- neuvector-controller-pod-*
- neuvector-enforcer-pod-*
- neuvector-updater-pod-*
diff --git a/chart/values.yaml b/chart/values.yaml
index 2c886729a7cda8e65a4968d0ce10dc2b6ccf457f..6b767ac9bf20812c0b047a5abeb56193d4df50c3 100644
--- a/chart/values.yaml
+++ b/chart/values.yaml
@@ -758,11 +758,11 @@ neuvector:
git:
repo: https://repo1.dso.mil/big-bang/product/packages/neuvector.git
path: "./chart"
- tag: "2.7.8-bb.4"
+ tag: "2.8.2-bb.1"
helmRepo:
repoName: "registry1"
chartName: "neuvector"
- tag: "2.7.8-bb.4"
+ tag: "2.8.2-bb.1"
# -- Redirect the package ingress to a specific Istio Gateway (listed in `istio.gateways`). The default is "public".
ingress: