kyvernoPolicies update to 3.3.4-bb.24
Package Merge Request
Package Changes
https://repo1.dso.mil/big-bang/product/packages/kyverno-policies/-/blob/3.3.4-bb.24/CHANGELOG.md
Package MR
big-bang/product/packages/kyverno-policies!303 (merged)
For Issue
Closes big-bang/product/packages/kyverno-policies#201 (closed)
Upgrade Notices
The default enabled and validationFailureAction settings for most policies have been updated to match those set in the bigbang umbrella chart. This change has no impact on those using the chart with bigbang, and only impacts those who may be using the chart independently.
-
disallow-image-tagsis now enabled and enforced by default. -
disallow-namespacesis now enabled and enforced by default. -
disallow-nodeport-servicesis now enforced by default. -
require-image-signatureis now disabled and not enforced by default. -
require-host-path-mountis now enforced by default. -
require-host-path-mount-pvis now enforced by default. -
require-host-path-writeis now enforced by default. -
restrict-image-registriesis now enforced by default.
Edited by Jonathan Braswell