Attention Iron Bank Customers: On March 27, 2025, we are moving SBOM artifacts from the Anchore Scan job to the Build job to streamline the container hardening pipeline. If you currently download SBOMs from the Anchore Scan job, you can still get them from the Build job and from other sources, including IBFE and image attestations.
New networkPolicies.nodeCidr value in package to set CIDR notation for kubernetes nodes (so defenders hostNetwork traffic can talk to twistlock-console k8s service).
New Network Policy resource to allow communication of Twistlock Defenders pods to twistlock-console k8s service.
Probably need discussion around including a new BigBang level value concerning the above package value networkPolicies.nodeCidr. The following private Networks are allowed by default "10.0.0.0/8" "172.16.0.0/12" "192.168.0.0/16" "100.64.0.0/10" so there is very small chance that someone would need to set value.
