policy-reporter
Monitoring and Observability Tool for the PolicyReport CRD with an optional UI.
MIT License
Bot releases are hidden (Show)
Published by fjogeleit 3 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 4 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 5 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 5 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 6 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 8 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 8 months ago
What's Changed
- fix(helm): typo in email report config by @sudoleg in https://github.com/kyverno/policy-reporter/pull/413
Full Changelog: https://github.com/kyverno/policy-reporter/compare/policy-reporter-2.22.2...policy-reporter-2.22.3
Published by fjogeleit 8 months ago
Policy Reporter v2.18.1
- Fix Resource Mapping in Violation Report E-Mails
Published by fjogeleit 9 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
What's Changed
- fix indentation in summary-report cronjob by @sudoleg in https://github.com/kyverno/policy-reporter/pull/407
New Contributors
- @sudoleg made their first contribution in https://github.com/kyverno/policy-reporter/pull/407
Full Changelog: https://github.com/kyverno/policy-reporter/compare/policy-reporter-2.22.0...policy-reporter-2.22.1
Published by fjogeleit 9 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
What's Changed
- Add basic auth to loki client by @YannickTeKulve in https://github.com/kyverno/policy-reporter/pull/394
- updated README to include up to date list of targets, fix links by @vponoikoait in https://github.com/kyverno/policy-reporter/pull/396
- feat(helm:dashboard): add rule filter in policyreport details by @lukashankeln in https://github.com/kyverno/policy-reporter/pull/399
- SecurityHub Updates by @fjogeleit in https://github.com/kyverno/policy-reporter/pull/401
- Removed unused from config.yaml. Stream name isn't a property of Security Hub by @vponoikoait in https://github.com/kyverno/policy-reporter/pull/403
- add extra volumes to email cronjobs by @fjogeleit in https://github.com/kyverno/policy-reporter/pull/405
- Prepare Release v2.22.0 by @fjogeleit in https://github.com/kyverno/policy-reporter/pull/406
New Contributors
- @YannickTeKulve made their first contribution in https://github.com/kyverno/policy-reporter/pull/394
- @vponoikoait made their first contribution in https://github.com/kyverno/policy-reporter/pull/396
- @lukashankeln made their first contribution in https://github.com/kyverno/policy-reporter/pull/399
Full Changelog: https://github.com/kyverno/policy-reporter/compare/policy-reporter-2.21.6...policy-reporter-2.22.0
Published by fjogeleit 9 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 10 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 10 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 11 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 11 months ago
Published by fjogeleit 12 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit 12 months ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
Published by fjogeleit about 1 year ago
- Policy Reporter
- fix: scope kind mapping
- feat: add debug http logging [#346 by blakepettersson]
- build: cache go mod [#345 by blakepettersson]
Published by fjogeleit about 1 year ago
Policy Reporter
- Support GoogleChat as new notification target
- Support Telegram as new notification target
- Support HTTP BasicAuth for API and metrics
- Go update to v1.21
Policy Reporter UI
- Support HTTP BasicAuth authenticated API calls
- Go update to v1.21
Policy Reporter KyvernoPlugin
- Support HTTP BasicAuth for API and metrics
- Go update to v1.21
BasicAuth Summary:
Configure global HTTP BasicAuthentication via Helm:
- Username/Password can configured directly or as existing secret with
username/passwordkeys - The Authentication is applied to REST APIs and metrics of the Core App and KyvernoPlugin (if enabled)
- The
Authorizationheader will be set in the Policy Reporter UI automatically- External Cluster configuration also supports
secretRefwhere you can setusername/passwordas well as the API endpoints (api,kyvernoApi) and ssl configuration (skipTLS,certificate)
- External Cluster configuration also supports
- If monitoring enabled the basicAuth configuration will also applied on the ServiceMonitors
- direct configuration will create a dedicated auth secret for ServiceMonitors
- secretRef will reuse the existing secret for ServiceMonitors
global:
basicAuth:
#https://github.com/kyverno/policy-reporter/releases/tag/policy-reporter-2.20.0 username: "username"
#password: "password"
secretRef: auth-secret
Example external cluster:
ui:
...
clusters:
- name: Minikube
api: http://policy-reporter:8080
kyvernoApi: http://policy-reporter-kyverno-plugin:8080
basicAuth:
username: user
password: password
- name: Secret
api: http://policy-reporter:8080
kyvernoApi: http://policy-reporter-kyverno-plugin:8080
secretRef: auth-secret
- name: Unauthorized
api: http://policy-reporter:8080
kyvernoApi: http://policy-reporter-kyverno-plugin:8080
Published by fjogeleit over 1 year ago
Policy Reporter watches for PolicyReport Resources. It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
