twistlock update to 0.15.0-bb.3

Package Merge Request

Package Changes

https://repo1.dso.mil/big-bang/product/packages/twistlock/-/blob/0.15.0-bb.3/CHANGELOG.md

Package MR

big-bang/product/packages/twistlock!139 (merged)

For Issue

Closes big-bang/product/packages/twistlock#95 (closed)

Upgrade Notices

A Sidecar resource has been added to the Twistlock namespace that disallows egress to endpoints that are not part of the Istio service registry (a.k.a REGISTRY_ONLY). The outboundTrafficPolicy.mode in the Sidecar can be configured, however, to be something other than REGISTRY_ONLY if desired by setting istio.hardened.outboundTrafficPolicyMode. This provides a redundant layer of network security in addition to NetworkPolicies. This Sidecar is disabled by default but can be enabled by setting istio.enabled: true and istio.hardened.enabled: true.

Additionally, custom ServiceEntries can be created by populating the istio.hardened.customServiceEntries list.

added botmr statusreview twistlock labels

assigned to @charden

changed the description

requested review from @ryan.j.garcia, @chris.oconnell, and @michaelmartin

added 1 commit

• 698764ae - enable istio hardened by default

Compare with previous version

removed statusreview label

added statusdoing label

added 4 commits

• f4c6a507 - Testing Istio whitelist egress for Twistlock MR - branch registry-only-sidecar-twistlock
• 36b03ade - Testing Istio whitelist egress for Twistlock MR - adding exportTo: to customServiceEntries
• 6b35f555 - Merge branch 'test-whitelist-twistlock-139' into update-twistlock-tag-0.15.0-bb.3
• 70f44c75 - Merging BB pre mr-bot test branch

Compare with previous version

changed title from Draft: twistlock update to 0.15.0-bb.3 to Draft: DEBUG twistlock update to 0.15.0-bb.3

added 5 commits

• 70f44c75...32b88bbd - 4 commits from branch master
• 9b719159 - Merge remote-tracking branch 'origin/master' into update-twistlock-tag-0.15.0-bb.3

Compare with previous version

added 1 commit

• 788fded0 - troubleshooting mr-bot mr failure: removing redundant istio.hardened from twistlock test-values

Compare with previous version

added 3 commits

• 788fded0...ac6ce18e - 2 commits from branch master
• 8905943d - Merge remote-tracking branch 'origin/master' into update-twistlock-tag-0.15.0-bb.3

Compare with previous version

marked this merge request as ready

changed title from Draft: DEBUG twistlock update to 0.15.0-bb.3 to twistlock update to 0.15.0-bb.3

changed the description

added statusreview label and removed statusdoing label

requested review from @ryan.thompson.44

@andrewshoell : You have been tagged in this merge request for the purpose of conducting secondary review.

marked this merge request as draft

marked this merge request as ready

approved this merge request

lgtm

approved this merge request

changed milestone to %2.24.0

merged

mentioned in commit 047fab0c

mentioned in merge request big-bang/customers/template!77 (merged)