diff --git a/checkpoint/cloudguard/Chart.yaml b/checkpoint/cloudguard/Chart.yaml index d395f1c..7a26787 100644 --- a/checkpoint/cloudguard/Chart.yaml +++ b/checkpoint/cloudguard/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 -appVersion: 2.33.1 +appVersion: 2.34.0 description: A Helm chart for Check Point CloudGuard Workload Security home: https://portal.checkpoint.com icon: https://www.checkpoint.com/wp-content/uploads/icon-cloudguard-nav.png @@ -35,4 +35,4 @@ keywords: - gke - autopilot name: cloudguard -version: 2.33.1 +version: 2.34.0 diff --git a/checkpoint/cloudguard/README.md b/checkpoint/cloudguard/README.md index e4c1862..4612e88 100644 --- a/checkpoint/cloudguard/README.md +++ b/checkpoint/cloudguard/README.md @@ -139,7 +139,6 @@ The following table list the configurable parameters of this chart and their def | `platform` | Kubernetes platform (kubernetes/ tanzu/ openshift/ openshift.v3/ eks/ eks.bottlerocket/ gke.cos/ gke.autopilot/ k3s/ rke2/ kubernetes.coreos) overriding auto-detection | `kubernetes` | | `seccompProfile` | Computer Security facility profile. (to be used in kubernetes 1.19 and up) | `RuntimeDefault` | | `podAnnotations.seccomp` | Computer Security facility profile. (to be used in kubernetes below 1.19) | `runtime/default` | -| `podAnnotations.apparmor` | Apparmor Linux kernel security module profile. | `{}` | | `autoUpgrade` | Enable auto-upgrade (preserve, true or false). 'major.minor' tags will be set for images rather than 'major.minor.patch'" | `preserve` | | `podAnnotations.custom` | Custom Pod annotations (for all agent Pods) | `{}` | | `priorityClassName` | Specifies custom priorityClassName | `` | @@ -265,64 +264,63 @@ The following table list the configurable parameters of this chart and their def | `addons.runtimeProtection.policy.podAnnotations.custom` | Custom Pod annotations (for Pods of this agent) | `{}` | | `addons.runtimeProtection.daemonConfigurationOverrides` | Overrides for multiple daemonSets with different configuration values | see below | -The default nodeSelector for Admission Control, Inventory and Runtime Protection policy agents is: +The default nodeSelector for the Runtime Protection daemon agent is: ```yaml nodeSelector: - kubernetes.io/os: linux + kubernetes.io/os: linux + kubernetes.io/arch: amd64 ``` The default nodeSelector for other agents is: ```yaml nodeSelector: kubernetes.io/os: linux - kubernetes.io/arch: amd64 ``` -The default node affinity for Admission Control, Inventory and Runtime Protection policy agents (deployment) -to support nodes with arm64 and amd64 architectures: +The default affinity is configured to support nodes with arm64 and amd64 architectures: ```yaml - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/arch - operator: In - values: - - arm64 - - amd64 +nodeAffinity: + requiredDuringSchedulingIgnoredDuringExecution: + nodeSelectorTerms: + - matchExpressions: + - key: kubernetes.io/arch + operator: In + values: + - arm64 + - amd64 ``` -For Admission Control enforcer agent, it also has default inter-pod anti-affinity ensuring the pods are scheduled on different nodes : +For Admission Control enforcer agent, it also has default inter-pod anti-affinity ensuring the pods are scheduled on different nodes: ```yaml - podAntiAffinity: - preferredDuringSchedulingIgnoredDuringExecution: - - weight: 1 - podAffinityTerm: - labelSelector: - matchExpressions: - - key: "kubernetes.io/name" - operator: In - values: - - consec-admission-enforcer - topologyKey: "kubernetes.io/hostname" +podAntiAffinity: + preferredDuringSchedulingIgnoredDuringExecution: + - weight: 1 + podAffinityTerm: + labelSelector: + matchExpressions: + - key: "kubernetes.io/name" + operator: In + values: + - consec-admission-enforcer + topologyKey: "kubernetes.io/hostname" ``` On EKS, DaemonSets are configured with node affinity that prevents Pods from running on Fargate nodes: ```yaml - addons: - imageScan: - enabled: true - daemon: - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: eks.amazonaws.com/compute-type - operator: NotIn - values: - - fargate +addons: +imageScan: + enabled: true + daemon: + affinity: + nodeAffinity: + requiredDuringSchedulingIgnoredDuringExecution: + nodeSelectorTerms: + - matchExpressions: + - key: eks.amazonaws.com/compute-type + operator: NotIn + values: + - fargate ``` The `daemonConfigurationOverrides` object should have one or more objects with unique names (case insensitive), each object must then have a `nodeSelector` data and any additional overrides, such as resource limits and requests. The values defined in `daemon` object are used as a basis for the overrides.\ diff --git a/checkpoint/cloudguard/defaults.yaml b/checkpoint/cloudguard/defaults.yaml index 9c52284..2063977 100755 --- a/checkpoint/cloudguard/defaults.yaml +++ b/checkpoint/cloudguard/defaults.yaml @@ -41,7 +41,6 @@ imagePullPolicy: Always ## podAnnotations: seccomp: runtime/default - apparmor: {} custom: {} ## Proxy settings @@ -69,7 +68,7 @@ inventory: ## Specify image and tag image: checkpoint/consec-inventory-agent - tag: 1.15.0 + tag: 1.16.0 ## Specify existing service account name ("" to create) serviceAccountName: "" @@ -112,7 +111,7 @@ addons: priorityClassName: "system-node-critical" ## Specify image and tag image: checkpoint/consec-imagescan-daemon - tag: 2.37.0 + tag: 2.38.0 ## Specify existing service account name ("" to create) serviceAccountName: "" @@ -134,7 +133,7 @@ addons: shim: ## Specify image and tag image: checkpoint/consec-imagescan-shim - tag: 2.37.0 + tag: 2.38.0 ## Configure resource requests and limits ## ref: http://kubernetes.io/docs/user-guide/compute-resources/ @@ -169,7 +168,7 @@ addons: engine: ## Specify image and tag image: checkpoint/consec-imagescan-engine - tag: 2.37.0 + tag: 2.38.0 ## Specify existing service account name ("" to create) serviceAccountName: "" @@ -201,7 +200,7 @@ addons: list: ## Specify image and tag image: checkpoint/consec-imagescan-engine - tag: 2.37.0 + tag: 2.38.0 ## Specify existing service account name ("" to create) serviceAccountName: "" @@ -272,7 +271,7 @@ addons: priorityClassName: "system-node-critical" ## Specify image and tag image: checkpoint/consec-flowlogs-daemon - tag: 0.15.0 + tag: 0.16.0 ## Specify existing service account name ("" to create) serviceAccountName: "" @@ -311,7 +310,7 @@ addons: policy: ## Specify image and tag image: checkpoint/consec-admission-policy - tag: 1.9.0 + tag: 1.10.0 ## Specify existing service account name ("" to create) serviceAccountName: "" @@ -341,7 +340,7 @@ addons: enforcer: ## Specify image and tag image: checkpoint/consec-admission-enforcer - tag: 2.13.0 + tag: 2.14.0 ## Specify existing service account name ("" to create) serviceAccountName: "" diff --git a/checkpoint/cloudguard/templates/_helpers.tpl b/checkpoint/cloudguard/templates/_helpers.tpl index a5f2ef5..b63d40c 100644 --- a/checkpoint/cloudguard/templates/_helpers.tpl +++ b/checkpoint/cloudguard/templates/_helpers.tpl @@ -42,7 +42,7 @@ {{ printf "%s-%s-%s" (include "name.prefix" .) .featureName .daemonConfigName }} {{- end -}} -{{- /* Service account name of a given agent (provided in values.yaml or auto-generated */ -}} +{{- /* Service account name of a given agent (provided in values.yaml or auto-generated) */ -}} {{- define "agent.service.account.name" -}} {{- default (include "agent.resource.name" .) .agentConfig.serviceAccountName }} {{- end -}} @@ -100,10 +100,6 @@ app.created.by.template: {{ (include "is.helm.template.command" .) | quote }} {{- if and (not (contains "openshift" .platform)) (semverCompare "<1.19-0" .Capabilities.KubeVersion.Version) }} seccomp.security.alpha.kubernetes.io/pod: {{ .Values.podAnnotations.seccomp }} {{- end }} -{{- if .Values.podAnnotations.apparmor }} -container.apparmor.security.beta.kubernetes.io/{{ template "agent.resource.name" . }}: -{{ toYaml .Values.podAnnotations.apparmor | indent 2 }} -{{- end }} {{- if .Values.podAnnotations }} {{- if .Values.podAnnotations.custom }} {{ toYaml .Values.podAnnotations.custom }} @@ -141,14 +137,8 @@ serviceAccountName: {{ template "agent.service.account.name" . }} nodeSelector: {{ toYaml .agentConfig.nodeSelector | indent 2 }} {{- end }} -{{- $allVirtualAffinities := (include "get.virtualNodesLabels" .) | fromYaml -}} -{{- if .agentConfig.affinity }} -affinity: -{{ .agentConfig.affinity | toYaml | indent 2 }} -{{- else if and (contains "daemon" .agentName) (hasKey $allVirtualAffinities .platform) }} affinity: -{{ include "daemonset.commonAffinity.labels" . | indent 2 }} -{{- end }} +{{ include "common.pod.properties.affinity" . | indent 2 }} {{- if .agentConfig.tolerations }} tolerations: {{ toYaml .agentConfig.tolerations | indent 2 }} @@ -503,7 +493,7 @@ usage: {{- if hasKey $currentConfiguration "containerRuntime" -}} {{- $containerRuntime := get $currentConfiguration "containerRuntime" -}} {{- include "validate.container.runtime" $currentConfiguration -}} -{{- $_ := set $copyConfig "containerRuntime" ($containerRuntime | lower) -}} +{{- $_ := set $copyConfig "containerRuntime" ($containerRuntime | lower) -}} {{- end -}} {{- $_ := set $mergedAgentConfig "env" ((concat (get $mergedAgentConfig "env") (get $copyAgentConfig "env") ) | uniq) -}} {{- $_ := set $copyConfig "agentConfig" $mergedAgentConfig -}} @@ -514,16 +504,37 @@ usage: {{- end -}} {{- end -}} -{{- define "common.node.affinity.multiarch" -}} +{{- define "common.pod.properties.affinity" -}} +{{- if .agentConfig.affinity }} +{{- .agentConfig.affinity | toYaml }} +{{- else }} +{{- $allVirtualAffinities := (include "get.virtualNodesLabels" .) | fromYaml -}} +{{- $nodeAffinityMatchExpressions := list (include "common.node.affinity.multiarch" . | fromYaml) -}} +{{- if and (eq "DaemonSet" .resourceKind) (hasKey $allVirtualAffinities .platform) }} +{{- $virtualNodesLabels := get $allVirtualAffinities .platform -}} +{{- range $labelKey, $labelValue := $virtualNodesLabels -}} +{{- $generatedExpression := dict "key" $labelKey "operator" "NotIn" "values" (list $labelValue) -}} +{{- $nodeAffinityMatchExpressions = append $nodeAffinityMatchExpressions ( $generatedExpression ) -}} +{{- end -}} +{{- end -}} nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/arch - operator: In - values: - - arm64 - - amd64 + - matchExpressions: +{{ $nodeAffinityMatchExpressions | toYaml | indent 10 }} +{{- /* add pod anti affinity */ -}} +{{- if and (eq "Deployment" .resourceKind) (and (eq "enforcer" .agentName) (eq "admission" .featureName)) }} +{{ include "deployment.common.affinity.labels" . }} +{{- end }} +{{- end -}} +{{- end -}} + +{{- define "common.node.affinity.multiarch" -}} +key: kubernetes.io/arch +operator: In +values: + - arm64 + - amd64 {{- end -}} {{- /* virtual node labels, additions should keep the same format. @@ -537,24 +548,19 @@ eks: # exampleLabelKey: "example_label_value" {{- end -}} -{{- /* creating the affinity for DaemonSet to not run on virtual nodes -usage: -`{{- $virtualAffinites := (include "daemonset.commonAffinity.labels" . ) | fromYaml -}}` -*/ -}} -{{- define "daemonset.commonAffinity.labels" -}} -{{- $virtualNodesLabels := get (include "get.virtualNodesLabels" . | fromYaml) .platform -}} -nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: -{{- range $labelKey, $labelValue := $virtualNodesLabels }} - - key: {{$labelKey}} - operator: NotIn - values: - - {{$labelValue}} +{{- define "deployment.common.affinity.labels" -}} +podAntiAffinity: + preferredDuringSchedulingIgnoredDuringExecution: + - weight: 1 + podAffinityTerm: + labelSelector: + matchExpressions: + - key: "kubernetes.io/name" + operator: In + values: + - {{ include "agent.resource.name" . }} + topologyKey: "kubernetes.io/hostname" {{- end -}} -{{- end -}} - {{- /* list of supported platforms usage: diff --git a/checkpoint/cloudguard/templates/admission/enforcer/deployment.yaml b/checkpoint/cloudguard/templates/admission/enforcer/deployment.yaml index 06fe21d..388b75b 100644 --- a/checkpoint/cloudguard/templates/admission/enforcer/deployment.yaml +++ b/checkpoint/cloudguard/templates/admission/enforcer/deployment.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "admission.enforcer.config" .) -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" .Files -}} +{{- /* Mark the config as holding a resource of type "Deployment" */ -}} +{{- $_ := set $config "resourceKind" "Deployment" -}} {{ if $config.featureConfig.enabled }} apiVersion: apps/v1 kind: Deployment @@ -23,21 +25,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - # the affinity definition should be BEFORE include "common.pod.properties" .since in case the - #user will add his own "affinity" we want to take his definition - affinity: - podAntiAffinity: - preferredDuringSchedulingIgnoredDuringExecution: - - weight: 1 - podAffinityTerm: - labelSelector: - matchExpressions: - - key: "kubernetes.io/name" - operator: In - values: - - {{ include "agent.resource.name" $config }} - topologyKey: "kubernetes.io/hostname" -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/checkpoint/cloudguard/templates/admission/policy/deployment.yaml b/checkpoint/cloudguard/templates/admission/policy/deployment.yaml index 4651443..62ac2d6 100644 --- a/checkpoint/cloudguard/templates/admission/policy/deployment.yaml +++ b/checkpoint/cloudguard/templates/admission/policy/deployment.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "admission.policy.config" .) -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" .Files -}} +{{- /* Mark the config as holding a resource of type "Deployment" */ -}} +{{- $_ := set $config "resourceKind" "Deployment" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: Deployment @@ -21,8 +23,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/checkpoint/cloudguard/templates/flowlogs/daemon/daemonset.yaml b/checkpoint/cloudguard/templates/flowlogs/daemon/daemonset.yaml index 103e44b..0395590 100644 --- a/checkpoint/cloudguard/templates/flowlogs/daemon/daemonset.yaml +++ b/checkpoint/cloudguard/templates/flowlogs/daemon/daemonset.yaml @@ -3,6 +3,8 @@ {{- $config = $config | fromYaml -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" $.Files -}} +{{- /* Mark the config as holding a resource of type "DaemonSet" */ -}} +{{- $_ := set $config "resourceKind" "DaemonSet" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: DaemonSet @@ -23,8 +25,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} hostNetwork: true containers: diff --git a/checkpoint/cloudguard/templates/imagescan/armon/daemonset.yaml b/checkpoint/cloudguard/templates/imagescan/armon/daemonset.yaml index fc8bae3..1205f90 100644 --- a/checkpoint/cloudguard/templates/imagescan/armon/daemonset.yaml +++ b/checkpoint/cloudguard/templates/imagescan/armon/daemonset.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "imagescan.armon.config" .) -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" $.Files -}} +{{- /* Mark the config as holding a resource of type "DaemonSet" */ -}} +{{- $_ := set $config "resourceKind" "DaemonSet" -}} {{- if and $config.featureConfig.enabled $config.agentConfig.enabled -}} apiVersion: apps/v1 kind: DaemonSet @@ -21,8 +23,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: - name: {{ $config.agentName }} diff --git a/checkpoint/cloudguard/templates/imagescan/daemon/daemonset.yaml b/checkpoint/cloudguard/templates/imagescan/daemon/daemonset.yaml index cc57808..0ac125a 100644 --- a/checkpoint/cloudguard/templates/imagescan/daemon/daemonset.yaml +++ b/checkpoint/cloudguard/templates/imagescan/daemon/daemonset.yaml @@ -3,6 +3,8 @@ {{- $config = $config | fromYaml -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" $.Files -}} +{{- /* Mark the config as holding a resource of type "DaemonSet" */ -}} +{{- $_ := set $config "resourceKind" "DaemonSet" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: DaemonSet @@ -25,8 +27,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/checkpoint/cloudguard/templates/imagescan/engine/deployment.yaml b/checkpoint/cloudguard/templates/imagescan/engine/deployment.yaml index c1fd543..ec20dad 100644 --- a/checkpoint/cloudguard/templates/imagescan/engine/deployment.yaml +++ b/checkpoint/cloudguard/templates/imagescan/engine/deployment.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "imagescan.engine.config" .) -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" .Files -}} +{{- /* Mark the config as holding a resource of type "Deployment" */ -}} +{{- $_ := set $config "resourceKind" "Deployment" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: Deployment @@ -23,8 +25,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/checkpoint/cloudguard/templates/imagescan/list/deployment.yaml b/checkpoint/cloudguard/templates/imagescan/list/deployment.yaml index 3e4e4ed..d6fbf3c 100644 --- a/checkpoint/cloudguard/templates/imagescan/list/deployment.yaml +++ b/checkpoint/cloudguard/templates/imagescan/list/deployment.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "imagescan.list.config" .) -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" .Files -}} +{{- /* Mark the config as holding a resource of type "Deployment" */ -}} +{{- $_ := set $config "resourceKind" "Deployment" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: Deployment @@ -26,8 +28,6 @@ spec: {{ include "common.labels.with.chart" $config | indent 8 }} imagescan-agent-type: list spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/checkpoint/cloudguard/templates/inventory/agent/deployment.yaml b/checkpoint/cloudguard/templates/inventory/agent/deployment.yaml index 06321a9..c68a9f0 100644 --- a/checkpoint/cloudguard/templates/inventory/agent/deployment.yaml +++ b/checkpoint/cloudguard/templates/inventory/agent/deployment.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "inventory.agent.config" .) -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" .Files -}} +{{- /* Mark the config as holding a resource of type "Deployment" */ -}} +{{- $_ := set $config "resourceKind" "Deployment" -}} apiVersion: apps/v1 kind: Deployment metadata: @@ -20,8 +22,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/checkpoint/cloudguard/templates/runtime/daemon/_helpers.tpl b/checkpoint/cloudguard/templates/runtime/daemon/_helpers.tpl index 800320d..b6a709a 100644 --- a/checkpoint/cloudguard/templates/runtime/daemon/_helpers.tpl +++ b/checkpoint/cloudguard/templates/runtime/daemon/_helpers.tpl @@ -20,3 +20,19 @@ usage: {{- $_ := set $config "agentConfig" $config.Values.addons.runtimeProtection.daemon -}} {{- $config | toYaml -}} {{- end -}} + + +{{- /* App armor annotation K8s version < 1.30 */ -}} +{{- define "runtime.daemon.apparmor.annotation" -}} +{{- if semverCompare "<1.30-0" .Capabilities.KubeVersion.Version -}} +container.apparmor.security.beta.kubernetes.io/daemon: unconfined +{{- end -}} +{{- end -}} + +{{- /* App armor annotation K8s version > 1.30 */ -}} +{{- define "runtime.daemon.apparmor.securityContext" -}} +{{- if semverCompare ">=1.30-0" .Capabilities.KubeVersion.Version -}} +appArmorProfile: + type: Unconfined +{{- end -}} +{{- end -}} \ No newline at end of file diff --git a/checkpoint/cloudguard/templates/runtime/daemon/daemonset.yaml b/checkpoint/cloudguard/templates/runtime/daemon/daemonset.yaml index 52a7828..c7a85bc 100755 --- a/checkpoint/cloudguard/templates/runtime/daemon/daemonset.yaml +++ b/checkpoint/cloudguard/templates/runtime/daemon/daemonset.yaml @@ -3,6 +3,8 @@ {{- $config = $config | fromYaml -}} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" $.Files -}} +{{- /* Mark the config as holding a resource of type "DaemonSet" */ -}} +{{- $_ := set $config "resourceKind" "DaemonSet" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: DaemonSet @@ -20,7 +22,7 @@ spec: metadata: annotations: {{ include "common.pod.annotations" $config | indent 8 }} - container.apparmor.security.beta.kubernetes.io/daemon: unconfined +{{ include "runtime.daemon.apparmor.annotation" $config | indent 8 }} labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: @@ -226,6 +228,7 @@ spec: - AUDIT_READ # for fmon - AUDIT_WRITE # for fmon {{- end }} +{{ include "runtime.daemon.apparmor.securityContext" $config | indent 10 }} {{- end }} volumeMounts: - name: rp4c-alerts diff --git a/checkpoint/cloudguard/templates/runtime/policy/deployment.yaml b/checkpoint/cloudguard/templates/runtime/policy/deployment.yaml index 0b24940..976e962 100644 --- a/checkpoint/cloudguard/templates/runtime/policy/deployment.yaml +++ b/checkpoint/cloudguard/templates/runtime/policy/deployment.yaml @@ -1,6 +1,8 @@ {{- $config := fromYaml (include "runtime.policy.config" .) }} {{- /* Make ".Files" of the chart accessible and properly formatted when accessed via $config' */ -}} {{- $_ := set $config "Files" .Files -}} +{{- /* Mark the config as holding a resource of type "Deployment" */ -}} +{{- $_ := set $config "resourceKind" "Deployment" -}} {{- if $config.featureConfig.enabled -}} apiVersion: apps/v1 kind: Deployment @@ -21,8 +23,6 @@ spec: labels: {{ include "common.labels.with.chart" $config | indent 8 }} spec: - affinity: -{{ include "common.node.affinity.multiarch" $config | indent 8 }} {{ include "common.pod.properties" $config | indent 6 }} containers: # Main container diff --git a/repository/cloudguard-2.34.0.tgz b/repository/cloudguard-2.34.0.tgz new file mode 100644 index 0000000..442c3de Binary files /dev/null and b/repository/cloudguard-2.34.0.tgz differ diff --git a/repository/index.yaml b/repository/index.yaml index 3a900ba..aae3ee6 100644 --- a/repository/index.yaml +++ b/repository/index.yaml @@ -1,9 +1,51 @@ apiVersion: v1 entries: cloudguard: + - apiVersion: v2 + appVersion: 2.34.0 + created: "2024-12-18T15:51:45.650388304Z" + description: A Helm chart for Check Point CloudGuard Workload Security + digest: f71564edaedfd79dde5f69ac4ff1c313bb5f62f9ef38cd6be1568543a414f497 + home: https://portal.checkpoint.com + icon: https://www.checkpoint.com/wp-content/uploads/icon-cloudguard-nav.png + keywords: + - check point + - cloudguard + - workload security + - inventory + - posture management + - vulnerability assessment + - image assurance + - flow logs + - threat intelligence + - admission control + - runtime protection + - registry scan + - acr + - ecr + - gcr + - gar + - harbor + - jfrog artifactory + - sonatype nexus + - ghcr + - github container registry + - ecs + - tanzu + - k3s + - rke2 + - openshift + - eks + - aks + - gke + - autopilot + name: cloudguard + urls: + - https://raw.githubusercontent.com/CheckPointSW/charts/master/repository/cloudguard-2.34.0.tgz + version: 2.34.0 - apiVersion: v2 appVersion: 2.34.0-1 - created: "2024-12-15T10:31:59.807396505Z" + created: "2024-12-18T15:51:45.647013439Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 41b7ff3cb8f4911d531baef081c9ea56b999fa99211b3ff46491f53d8dc2e77b home: https://portal.checkpoint.com @@ -45,7 +87,7 @@ entries: version: 2.34.0-1 - apiVersion: v2 appVersion: 2.34.0-0 - created: "2024-12-15T10:31:59.805253416Z" + created: "2024-12-18T15:51:45.645158932Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 06042a2c80d02817a8032f192549e48a410393339d6d603bbab82a5b6849ba23 home: https://portal.checkpoint.com @@ -87,7 +129,7 @@ entries: version: 2.34.0-0 - apiVersion: v2 appVersion: 2.33.1 - created: "2024-12-15T10:31:59.803453503Z" + created: "2024-12-18T15:51:45.643307631Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 9c393eb806fe247e1d6aa9cfaf93f7e486d629ab635291904a64823a7474d9b0 home: https://portal.checkpoint.com @@ -129,7 +171,7 @@ entries: version: 2.33.1 - apiVersion: v2 appVersion: 2.33.0 - created: "2024-12-15T10:31:59.800249744Z" + created: "2024-12-18T15:51:45.641327952Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 422e888127d000b2a3945550328dbd211667cad601e09477fa5cf24c64caba94 home: https://portal.checkpoint.com @@ -171,7 +213,7 @@ entries: version: 2.33.0 - apiVersion: v2 appVersion: 2.32.0 - created: "2024-12-15T10:31:59.798443691Z" + created: "2024-12-18T15:51:45.639378138Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 0faf719407dfc418b7a52ac035ab17602361e6fbefa7a38abdababfd1b5b4bc4 home: https://portal.checkpoint.com @@ -213,7 +255,7 @@ entries: version: 2.32.0 - apiVersion: v2 appVersion: 2.31.0 - created: "2024-12-15T10:31:59.796656452Z" + created: "2024-12-18T15:51:45.637469451Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 1401e3f88c3e58a7b61f79490a13b7fcf3ee368c8db00129e980397a78af3c99 home: https://portal.checkpoint.com @@ -255,7 +297,7 @@ entries: version: 2.31.0 - apiVersion: v2 appVersion: 2.30.0 - created: "2024-12-15T10:31:59.79483521Z" + created: "2024-12-18T15:51:45.635265355Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 16c65b6484f8aad51a2065ef23ed5c9392e4f913943cc701f2285c00b8033483 home: https://portal.checkpoint.com @@ -297,7 +339,7 @@ entries: version: 2.30.0 - apiVersion: v2 appVersion: 2.30.0-rp.0 - created: "2024-12-15T10:31:59.792984153Z" + created: "2024-12-18T15:51:45.632095511Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: c0360db29c8ca74cce6bc6bae2baa39b13e7472440127da185f29b483ca18cad home: https://portal.checkpoint.com @@ -339,7 +381,7 @@ entries: version: 2.30.0-rp.0 - apiVersion: v2 appVersion: 2.29.0 - created: "2024-12-15T10:31:59.782315744Z" + created: "2024-12-18T15:51:45.619814509Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: e9607e5835ff4cdca93b5a2a2dd5b55d3040270536f757f6a8f58f7c46505c28 home: https://portal.checkpoint.com @@ -380,7 +422,7 @@ entries: version: 2.29.0 - apiVersion: v2 appVersion: 2.29.0-rp.1 - created: "2024-12-15T10:31:59.780828062Z" + created: "2024-12-18T15:51:45.615853968Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 60f18702354ba0b61d375b816b8f02747cf43ecfa3ec45bebdd8e8e78085a3d9 home: https://portal.checkpoint.com @@ -421,7 +463,7 @@ entries: version: 2.29.0-rp.1 - apiVersion: v2 appVersion: 2.28.0 - created: "2024-12-15T10:31:59.779353754Z" + created: "2024-12-18T15:51:45.61405779Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: d2e5ac2a321c7ab0ce1a2a10f0ea277a2d36aefcb24a52ef82bf00672e56e9f8 home: https://portal.checkpoint.com @@ -462,7 +504,7 @@ entries: version: 2.28.0 - apiVersion: v2 appVersion: 2.27.1 - created: "2024-12-15T10:31:59.777864158Z" + created: "2024-12-18T15:51:45.610756381Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: cadce80cf1b286df2e584bdb8bd33ab592f8292c16d9a9a44457339cdf6c6cd6 home: https://portal.checkpoint.com @@ -501,7 +543,7 @@ entries: version: 2.27.1 - apiVersion: v2 appVersion: 2.27.0 - created: "2024-12-15T10:31:59.77619027Z" + created: "2024-12-18T15:51:45.607143985Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 67eb92e2a8b4d7df1d9cba289395a5d8609d00226f5ac521e546cce49bf2b57a home: https://portal.checkpoint.com @@ -540,7 +582,7 @@ entries: version: 2.27.0 - apiVersion: v2 appVersion: 2.26.0 - created: "2024-12-15T10:31:59.774646274Z" + created: "2024-12-18T15:51:45.603470828Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 40bb805906a9afd948bd867eb62254a243df3d1d69aa46cbb60dc8234e2a770d home: https://portal.checkpoint.com @@ -579,7 +621,7 @@ entries: version: 2.26.0 - apiVersion: v2 appVersion: 2.25.0 - created: "2024-12-15T10:31:59.771697157Z" + created: "2024-12-18T15:51:45.599688427Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 4a01d5f08a2c32b7b08116f9dd0a2fc3719f2fe63048d0bd79442425b01ecd64 home: https://portal.checkpoint.com @@ -618,7 +660,7 @@ entries: version: 2.25.0 - apiVersion: v2 appVersion: 2.24.3 - created: "2024-12-15T10:31:59.770304021Z" + created: "2024-12-18T15:51:45.594965694Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: c0017cffd7a43f920636d6c59dffc48b2c075f824dc8b2f124d9cf95380e562c home: https://portal.checkpoint.com @@ -657,7 +699,7 @@ entries: version: 2.24.3 - apiVersion: v2 appVersion: 2.23.0 - created: "2024-12-15T10:31:59.768862284Z" + created: "2024-12-18T15:51:45.593332657Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: a206fa0dcd03857dc9806d0991a325989e03356f75c34d76891beae280c847ec home: https://portal.checkpoint.com @@ -695,7 +737,7 @@ entries: version: 2.23.0 - apiVersion: v2 appVersion: 2.22.0 - created: "2024-12-15T10:31:59.767418323Z" + created: "2024-12-18T15:51:45.591582023Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 0aab618cb7466eeca9a13bd5d27253fa466c91eadc71689833a20480286aa5b8 home: https://portal.checkpoint.com @@ -733,7 +775,7 @@ entries: version: 2.22.0 - apiVersion: v2 appVersion: 2.21.0 - created: "2024-12-15T10:31:59.765629682Z" + created: "2024-12-18T15:51:45.588183875Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 9a3e7e51abfc946d26719dc0a51b2d25cb76ac588e68b2369eed5c92772e74f4 home: https://portal.checkpoint.com @@ -771,7 +813,7 @@ entries: version: 2.21.0 - apiVersion: v2 appVersion: 2.20.0 - created: "2024-12-15T10:31:59.76421815Z" + created: "2024-12-18T15:51:45.584625249Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 3c14983786e940b675fdb23ae5eeb4489a76ec78d93e48f3943967394bd95e7f home: https://portal.checkpoint.com @@ -805,7 +847,7 @@ entries: version: 2.20.0 - apiVersion: v2 appVersion: 2.19.1 - created: "2024-12-15T10:31:59.762849278Z" + created: "2024-12-18T15:51:45.581088574Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: e06900fa593bfa8929fc0fc0b87c6f12de49125f7b95157ab3b50bd48954d060 home: https://portal.checkpoint.com @@ -839,7 +881,7 @@ entries: version: 2.19.1 - apiVersion: v2 appVersion: 2.18.0 - created: "2024-12-15T10:31:59.761427318Z" + created: "2024-12-18T15:51:45.576863153Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 94d9f8ead188778c6c37fdf594aff9c057e5f7adc3a7f98a012a780e72d40ce0 home: https://portal.checkpoint.com @@ -873,7 +915,7 @@ entries: version: 2.18.0 - apiVersion: v2 appVersion: 2.17.0 - created: "2024-12-15T10:31:59.759696815Z" + created: "2024-12-18T15:51:45.575018234Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: d03556e294650b4c655131c3c8fd4885ea173678441c0966e3eaace09b64973b home: https://portal.checkpoint.com @@ -900,7 +942,7 @@ entries: version: 2.17.0 - apiVersion: v2 appVersion: 2.16.0 - created: "2024-12-15T10:31:59.758068071Z" + created: "2024-12-18T15:51:45.573154499Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: a6e08b3eddc8de558dbadf766ae159e4f303ab6c4280858b6943b607f73c4ac7 home: https://portal.checkpoint.com @@ -927,7 +969,7 @@ entries: version: 2.16.0 - apiVersion: v2 appVersion: 2.15.1 - created: "2024-12-15T10:31:59.756417205Z" + created: "2024-12-18T15:51:45.570243965Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 095c93751144ae2369a107e9b7a66010ea2dccdc1bcd90a9d871a39d6765940e home: https://portal.checkpoint.com @@ -954,7 +996,7 @@ entries: version: 2.15.1 - apiVersion: v2 appVersion: 2.15.0 - created: "2024-12-15T10:31:59.750696533Z" + created: "2024-12-18T15:51:45.566545009Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 1ce7e7428b102a3d0d045757d21090ba9240c9cd3dce7bdce49297ffa450c7f9 home: https://portal.checkpoint.com @@ -981,7 +1023,7 @@ entries: version: 2.15.0 - apiVersion: v2 appVersion: 2.14.1 - created: "2024-12-15T10:31:59.749008829Z" + created: "2024-12-18T15:51:45.562890085Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 3011a8d3e68701633517fe681a1cd3db2179521ab142de3539187952399aafd9 home: https://portal.checkpoint.com @@ -1008,7 +1050,7 @@ entries: version: 2.14.1 - apiVersion: v2 appVersion: 2.13.0 - created: "2024-12-15T10:31:59.747505157Z" + created: "2024-12-18T15:51:45.55777212Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 3a5d459726cf07b6bd4ffdbb8d2c1398c64f6ebf683607b6ee20b55317641e8c home: https://portal.checkpoint.com @@ -1035,7 +1077,7 @@ entries: version: 2.13.0 - apiVersion: v2 appVersion: 2.11.1 - created: "2024-12-15T10:31:59.746056447Z" + created: "2024-12-18T15:51:45.556105641Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: a82065c05b0d37f94465afb5d817381012467884777ea72e8532fe7d3d82c191 home: https://portal.checkpoint.com @@ -1060,7 +1102,7 @@ entries: version: 2.11.1 - apiVersion: v2 appVersion: 2.10.2 - created: "2024-12-15T10:31:59.744294005Z" + created: "2024-12-18T15:51:45.554513891Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: a6a6319c0d0d3f2f2e82aab3b4816be230ccec6a09a8f5c5f12dd4c1b62c0c7b home: https://portal.checkpoint.com @@ -1085,7 +1127,7 @@ entries: version: 2.10.2 - apiVersion: v2 appVersion: 2.10.1 - created: "2024-12-15T10:31:59.742750098Z" + created: "2024-12-18T15:51:45.552877538Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 2cdae3abc9f2988a1fb426707f24ec0f459ddb7b8b780b6e8c2ab9ba6308d083 home: https://portal.checkpoint.com @@ -1110,7 +1152,7 @@ entries: version: 2.10.1 - apiVersion: v2 appVersion: 2.10.0 - created: "2024-12-15T10:31:59.741213835Z" + created: "2024-12-18T15:51:45.551077191Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 6360f519190507ee4f004a47e395416b514da4815b0f8f32ba52704b81da87c4 home: https://portal.checkpoint.com @@ -1135,7 +1177,7 @@ entries: version: 2.10.0 - apiVersion: v2 appVersion: 2.9.0 - created: "2024-12-15T10:31:59.816621444Z" + created: "2024-12-18T15:51:45.661399112Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 0aa40700951df79c8eb3ba5fff812eeb608f1a1b5e77d6cdd5fb855b19579314 home: https://portal.checkpoint.com @@ -1160,7 +1202,7 @@ entries: version: 2.9.0 - apiVersion: v2 appVersion: 2.8.1 - created: "2024-12-15T10:31:59.815171131Z" + created: "2024-12-18T15:51:45.65983875Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: b3c53cf2771aeee0e46f97b71be765da2a762c6fc042d89c12a5f3ae8b436e82 home: https://portal.checkpoint.com @@ -1185,7 +1227,7 @@ entries: version: 2.8.1 - apiVersion: v2 appVersion: 2.8.0 - created: "2024-12-15T10:31:59.813764609Z" + created: "2024-12-18T15:51:45.658173213Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 2335d07e6aea36d4ac4c899566d45ea77c1c362684b07dbf18ed9069fa612b06 home: https://portal.checkpoint.com @@ -1210,7 +1252,7 @@ entries: version: 2.8.0 - apiVersion: v2 appVersion: 2.5.2 - created: "2024-12-15T10:31:59.812342629Z" + created: "2024-12-18T15:51:45.656492939Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: d070425b0eea904623b5ffa76094c4cea6e0fac63463245f6f62f3e964ff6294 home: https://portal.checkpoint.com @@ -1233,7 +1275,7 @@ entries: version: 2.5.2 - apiVersion: v2 appVersion: 2.5.1 - created: "2024-12-15T10:31:59.81112078Z" + created: "2024-12-18T15:51:45.654983962Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 85b711c72dc3f8ba29fe9552b3bff97bf88a2ad8fc882c9df03e693caaf05dfe home: https://portal.checkpoint.com @@ -1256,7 +1298,7 @@ entries: version: 2.5.1 - apiVersion: v2 appVersion: 2.5.0 - created: "2024-12-15T10:31:59.809903289Z" + created: "2024-12-18T15:51:45.65350458Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 6528eb362aa01300ca43c695759df035b7d8657930ccc9472272cf55d76ef3ed home: https://portal.checkpoint.com @@ -1279,7 +1321,7 @@ entries: version: 2.5.0 - apiVersion: v2 appVersion: 2.4.0 - created: "2024-12-15T10:31:59.808638611Z" + created: "2024-12-18T15:51:45.651981998Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 766b3224138ad56b9825e52aa1c3a1d14d9fb37e0aa2ce4a962bb5846fb4eb44 home: https://portal.checkpoint.com @@ -1302,7 +1344,7 @@ entries: version: 2.4.0 - apiVersion: v2 appVersion: 2.3.5 - created: "2024-12-15T10:31:59.790107863Z" + created: "2024-12-18T15:51:45.630092538Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 47195d99813fa84d1ff3b552dabc067183f354d4353a3c55bea8b4bf053750af home: https://secure.dome9.com/v2/ @@ -1328,7 +1370,7 @@ entries: version: 2.3.5 - apiVersion: v2 appVersion: 2.3.3 - created: "2024-12-15T10:31:59.788135401Z" + created: "2024-12-18T15:51:45.628537797Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 7e8ecac90cc603f7e83507358b67647ebffbee078ce5c79e2d25bad4be69d78a home: https://secure.dome9.com/v2/ @@ -1354,7 +1396,7 @@ entries: version: 2.3.3 - apiVersion: v2 appVersion: 2.3.2 - created: "2024-12-15T10:31:59.786302547Z" + created: "2024-12-18T15:51:45.627031044Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 81a7be75584877e4373be4fd2ef1dd11d111cc4d9964007c40ea610dc652a4d1 home: https://secure.dome9.com/v2/ @@ -1380,7 +1422,7 @@ entries: version: 2.3.2 - apiVersion: v2 appVersion: 2.3.1 - created: "2024-12-15T10:31:59.78517846Z" + created: "2024-12-18T15:51:45.62552909Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 91fbc7b612a6cf21abe69e40ac3b8459cb8eb46ebe4245a1c583b99515c9e5a4 home: https://secure.dome9.com/v2/ @@ -1406,7 +1448,7 @@ entries: version: 2.3.1 - apiVersion: v2 appVersion: 2.3.0 - created: "2024-12-15T10:31:59.784022053Z" + created: "2024-12-18T15:51:45.623851711Z" description: A Helm chart for Check Point CloudGuard Workload Security digest: 8be89cebf15b52831dab2c86495f61c1e11d8054a37d5dedb33cbedd5f18dcef home: https://secure.dome9.com/v2/ @@ -1433,7 +1475,7 @@ entries: cp-resource-management: - apiVersion: v1 appVersion: 1.11.0 - created: "2024-12-15T10:31:59.825654126Z" + created: "2024-12-18T15:51:45.669485078Z" description: A Helm chart for CloudGuard Workload Security digest: 194ba8d8578b0691900d3af3e51e71b5b9a679b9e8e250b9e07559638f1f5bf1 home: https://secure.dome9.com/v2/ @@ -1454,7 +1496,7 @@ entries: version: 1.11.0 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.825131816Z" + created: "2024-12-18T15:51:45.668934868Z" description: A Helm chart for CloudGuard Workload Security digest: a0010f440f43895e2ed1268555663451b0185d3ad1147f7dfad2d5d6026065f4 home: https://secure.dome9.com/v2/ @@ -1475,7 +1517,7 @@ entries: version: 1.09.3 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.82463887Z" + created: "2024-12-18T15:51:45.66839087Z" description: A Helm chart for CloudGuard Workload Security digest: 123efdfe387e20ee7b97d537eb85d950c15bcc6814933fdb4ee9214067b4c27b home: https://secure.dome9.com/v2/ @@ -1496,7 +1538,7 @@ entries: version: 1.09.2 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.823984265Z" + created: "2024-12-18T15:51:45.667838226Z" description: A Helm chart for CloudGuard Workload Security digest: 71b7b5c3928d7fc6e1c2625651311763710a50ccb970860da7f0de85c93b58ed home: https://secure.dome9.com/v2/ @@ -1518,7 +1560,7 @@ entries: version: 1.09.1 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.823388669Z" + created: "2024-12-18T15:51:45.667108684Z" description: A Helm chart for CloudGuard Workload Security digest: 5e976c6fb56ed34ea76a60c71bce292a6769f885d0ddb80464b532a03c9c4b29 home: https://secure.dome9.com/v2/ @@ -1540,7 +1582,7 @@ entries: version: 1.09.0 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.822795428Z" + created: "2024-12-18T15:51:45.666347303Z" description: A Helm chart for CloudGuard Workload Security digest: 5e616877265d618bfd075fd1df8a58b9b929c0332cc61f6a28ac64f676566503 home: https://secure.dome9.com/v2/ @@ -1562,7 +1604,7 @@ entries: version: 1.07.1 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.822169696Z" + created: "2024-12-18T15:51:45.665596051Z" description: A Helm chart for CloudGuard Workload Security digest: 8920c6606a6038ee4ed0b1e201fc28ea094b8a0d564b262435273907d7e65e82 home: https://secure.dome9.com/v2/ @@ -1584,7 +1626,7 @@ entries: version: 1.07.0 - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.821522053Z" + created: "2024-12-18T15:51:45.664727791Z" description: A Helm chart for Dome9 inventory uploader digest: bebb6e83ed371d2501879219a72540a2e7f45518f32ede0c64f7109b5b443033 home: https://secure.dome9.com/v2/ @@ -1603,7 +1645,7 @@ entries: version: "1.06" - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.821026924Z" + created: "2024-12-18T15:51:45.663444042Z" description: A Helm chart for Dome9 inventory uploader digest: ebaf4da8a836f017cb4cbd0012b063e293e3ae805ebddb92ce49d666fe328cf4 home: https://secure.dome9.com/v2/ @@ -1622,7 +1664,7 @@ entries: version: "1.05" - apiVersion: v1 appVersion: v1.1.0 - created: "2024-12-15T10:31:59.817695718Z" + created: "2024-12-18T15:51:45.662487689Z" description: A Helm chart for Dome9 inventory uploader digest: 54fa558ffa87cd41617ce2422b643680ff975ae4e76252dd9dc0a6bde483af38 home: https://secure.dome9.com/v2/ @@ -1641,7 +1683,7 @@ entries: version: "1.03" - apiVersion: v1 appVersion: "1.01" - created: "2024-12-15T10:31:59.817031906Z" + created: "2024-12-18T15:51:45.661951526Z" description: A Helm chart for Dome9 inventory uploader digest: c2514f34c7d80d704d13e7233f660ad55cd56895f671ad68128affe47ada14a5 home: https://secure.dome9.com/v2/ @@ -1660,7 +1702,7 @@ entries: version: "1.02" - apiVersion: v1 appVersion: "1" - created: "2024-12-15T10:31:59.826060761Z" + created: "2024-12-18T15:51:45.669948257Z" description: A Helm chart for Dome9 inventory uploader digest: ee75a01ae09e8ceec83cda0d16621198ebb2139b87c323966e65ba6ca65024f0 home: https://secure.dome9.com/v2/ @@ -1677,4 +1719,4 @@ entries: urls: - https://raw.githubusercontent.com/CheckPointSW/charts/master/repository/cp-resource-management-1.tgz version: "1" -generated: "2024-12-15T10:31:59.739359833Z" +generated: "2024-12-18T15:51:45.549130884Z"